Security Vulnerabilities - CVEs Published In December 2022
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=inquiries/view_inquiry&id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-12-02
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders/update_status.php?id=.
CVSS Score
7.2
EPSS Score
0.003
Published
2022-12-02
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/AddSysLogRule.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-02
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setSnmpInfo.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-02
Tenda i21 V1.0.0.14(4656) has a stack overflow vulnerability via /goform/setSysPwd.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-02
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setDiagnoseInfo.
CVSS Score
9.8
EPSS Score
0.024
Published
2022-12-02
Tenda i21 V1.0.0.14(4656) is vulnerable to Buffer Overflow via /goform/setUplinkInfo.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-02
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolRestoreSet.
CVSS Score
6.5
EPSS Score
0.001
Published
2022-12-02
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Cross Site Request Forgery (CSRF) via function fromSysToolReboot.
CVSS Score
6.5
EPSS Score
0.001
Published
2022-12-02
Use After Free in GitHub repository vim/vim prior to 9.0.0789.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-12-02