Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In December 2022
CVE-2022-2808
Authorization Bypass Through User-Controlled Key vulnerability in Algan Software Prens Student Information System allows Object Relational Mapping Injection.This issue affects Prens Student Information System: before 2.1.11.
CVSS Score
8.8
EPSS Score
0.003
Published
2022-12-02
CVE-2022-44929
An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.
CVSS Score
9.8
EPSS Score
0.021
Published
2022-12-02
CVE-2022-44930
D-Link DHP-W310AV 3.10EU was discovered to contain a command injection vulnerability via the System Checks function.
CVSS Score
9.8
EPSS Score
0.281
Published
2022-12-02
CVE-2022-45562
Insecure permissions in Telos Alliance Omnia MPX Node v1.0.0 to v1.4.9 allow attackers to manipulate and access system settings with backdoor account low privilege, this can lead to change hardware settings and execute arbitrary commands in vulnerable system functions that is requires high privilege to access.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-12-02
CVE-2022-43325
An unauthenticated command injection vulnerability in the product license validation function of Telos Alliance Omnia MPX Node 1.3.* - 1.4.* allows attackers to execute arbitrary commands via a crafted payload injected into the license input.
CVSS Score
9.8
EPSS Score
0.3
Published
2022-12-02
CVE-2022-44928
D-Link DVG-G5402SP GE_1.03 was discovered to contain a command injection vulnerability via the Maintenance function.
CVSS Score
9.8
EPSS Score
0.152
Published
2022-12-02
CVE-2022-35120
IXPdata EasyInstall 6.6.14725 contains an access control issue.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-12-01
CVE-2022-43333
Telenia Software s.r.l TVox before v22.0.17 was discovered to contain a remote code execution (RCE) vulnerability in the component action_export_control.php.
CVSS Score
9.8
EPSS Score
0.029
Published
2022-12-01
CVE-2022-44211
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings.
CVSS Score
7.4
EPSS Score
0.002
Published
2022-12-01
CVE-2022-44212
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel.
CVSS Score
5.9
EPSS Score
0.003
Published
2022-12-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved