Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In December 2022
CVE-2022-45917
ILIAS before 7.16 has an Open Redirect.
CVSS Score
6.1
EPSS Score
0.358
Published
2022-12-07
CVE-2022-45918
ILIAS before 7.16 allows External Control of File Name or Path.
CVSS Score
6.5
EPSS Score
0.011
Published
2022-12-07
CVE-2022-42699
Auth. Remote Code Execution vulnerability in Easy WP SMTP plugin <= 1.5.1 on WordPress.
CVSS Score
9.1
EPSS Score
0.073
Published
2022-12-06
CVE-2022-44030
Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-12-06
CVE-2022-41902
TensorFlow is an open source platform for machine learning. The function MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. We have patched the issue in GitHub commit a65411a1d69edfb16b25907ffb8f73556ce36bb7. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.8.4, 2.9.3, and 2.10.1.
CVSS Score
7.1
EPSS Score
0.003
Published
2022-12-06
CVE-2022-41910
TensorFlow is an open source platform for machine learning. The function MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. We have patched the issue in GitHub commit a65411a1d69edfb16b25907ffb8f73556ce36bb7. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.8.4, 2.9.3, and 2.10.1.
CVSS Score
4.8
EPSS Score
0.003
Published
2022-12-06
CVE-2022-45816
Auth. Stored Cross-Site Scripting (XSS) vulnerability in GD bbPress Attachments plugin <= 4.3.1 on WordPress.
CVSS Score
4.8
EPSS Score
0.003
Published
2022-12-06
CVE-2022-45829
Auth. Path Traversal vulnerability in Easy WP SMTP plugin <= 1.5.1 at WordPress.
CVSS Score
8.7
EPSS Score
0.005
Published
2022-12-06
CVE-2022-45833
Auth. Path Traversal vulnerability in Easy WP SMTP plugin <= 1.5.1 on WordPress.
CVSS Score
6.8
EPSS Score
0.008
Published
2022-12-06
CVE-2022-42888
Unauth. Privilege Escalation vulnerability in ARMember premium plugin <= 5.5.1 on WordPress.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-12-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved