Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2022-35016

Advancecomp v2.3 was discovered to contain a heap buffer overflow....

Affected Products : fedora advancecomp
EPSS Score: %0.03

Published: Aug. 29, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-34710

Windows Defender Credential Guard Information Disclosure Vulnerability...

Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 +4 more products
EPSS Score: %4.68

Published: Aug. 09, 2022

Modified: May. 29, 2025
5.5

MEDIUM

CVE-2022-32823

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to leak se...

Affected Products : macos mac_os_x iphone_os tvos watchos ipados
EPSS Score: %0.04

Published: Sep. 23, 2022

Modified: May. 22, 2025
5.5

MEDIUM

CVE-2022-3266

An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105....

Affected Products : firefox firefox_esr thunderbird
EPSS Score: %0.06

Published: Dec. 22, 2022

Modified: Apr. 15, 2025
5.5

MEDIUM

CVE-2022-31615

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service....

Affected Products : gpu_display_driver rtx tesla geforce
EPSS Score: %0.04

Published: Nov. 19, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-3104

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference....

Affected Products : linux_kernel
EPSS Score: %0.02

Published: Dec. 14, 2022

Modified: Apr. 22, 2025
5.5

MEDIUM

CVE-2022-30552

Das U-Boot 2022.01 has a Buffer Overflow....

Affected Products : u-boot
EPSS Score: %0.09

Published: Jun. 08, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-30159

Microsoft Office Information Disclosure Vulnerability...

Affected Products : sharepoint_enterprise_server sharepoint_server office_web_apps office_online_server office_web_apps_server
EPSS Score: %2.95

Published: Jun. 15, 2022

Modified: Jan. 02, 2025
5.5

MEDIUM

CVE-2022-28224

Clusters using Calico (version 3.22.1 and below), Calico Enterprise (version 3.12.0 and below), may be vulnerable to route hijacking with the floating IP feature. Due to insufficient validation, a privileged attacker may be able to set a floating IP annot...

Affected Products : calico_enterprise calico_os calico
EPSS Score: %0.28

Published: Jun. 06, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-24823

Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are used local informa...

Affected Products : netty active_iq_unified_manager oncommand_workflow_automation snapcenter financial_services_crime_and_compliance_management_studio
EPSS Score: %0.28

Published: May. 06, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products
EPSS Score: %0.48

Published: Mar. 09, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-23252

Microsoft Office Information Disclosure Vulnerability...

Affected Products : office 365_apps office_long_term_servicing_channel
EPSS Score: %0.32

Published: Feb. 09, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-23193

Adobe Illustrator versions 25.4.3 (and earlier) and 26.0.2 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASL...

Affected Products : macos windows illustrator
EPSS Score: %2.04

Published: Feb. 16, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-21378

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocol...

Affected Products : mysql oncommand_insight oncommand_workflow_automation mysql_server
EPSS Score: %0.15

Published: Jan. 19, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-21233

Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access....

Affected Products : core_i9-11900k_firmware core_i9-11900kf_firmware core_i9-11900_firmware core_i9-11900t_firmware core_i9-11900f_firmware core_i7-11700k_firmware core_i7-11700kf_firmware core_i7-11700_firmware core_i7-11700t_firmware core_i7-11700f_firmware +659 more products
EPSS Score: %0.11

Published: Aug. 18, 2022

Modified: May. 05, 2025
5.5

MEDIUM

CVE-2022-21131

Improper access control for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable information disclosure via local access....

Affected Products : xeon_platinum_8253_firmware xeon_platinum_8256_firmware xeon_platinum_8260_firmware xeon_platinum_8276_firmware xeon_platinum_8276l_firmware xeon_platinum_8280l_firmware xeon_platinum_8260l_firmware xeon_platinum_8280_firmware xeon_platinum_8260y_firmware xeon_platinum_8268_firmware +282 more products
EPSS Score: %0.08

Published: May. 12, 2022

Modified: May. 05, 2025
5.5

MEDIUM

CVE-2022-1804

accountsservice no longer drops permissions when writting .pam_environment...

Affected Products : ubuntu_linux accountsservice
Published: Mar. 25, 2025

Modified: Aug. 26, 2025

Vuln Type: Authorization
5.5

MEDIUM

CVE-2022-1354

A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a ...

Affected Products : enterprise_linux fedora debian_linux ontap_select_deploy_administration_utility libtiff
EPSS Score: %0.03

Published: Aug. 31, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-1056

Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 46dc8fcd....

Affected Products : active_iq_unified_manager libtiff
EPSS Score: %0.04

Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-0319

Out-of-bounds Read in vim/vim prior to 8.2....

Affected Products : ubuntu_linux debian_linux vim macos
EPSS Score: %0.11

Published: Jan. 21, 2022

Modified: Nov. 21, 2024

Showing 20 of 291641 Results

Latest CVE Feed

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable