Latest CVE Feed
-
8.8
HIGHCVE-2022-22111
In DayByDay CRM, version 2.2.0 is vulnerable to missing authorization. Any application user in the application who has update user permission enabled is able to change the password of other users, including the administrator’s. This allows the attacker to... Read more
- Published: Jan. 05, 2022
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2022-22110
In Daybyday CRM, versions 1.1 through 2.2.0 enforce weak password requirements in the user update functionality. A user with privileges to update his password could change it to a weak password, such as those with a length of a single character. This may ... Read more
- Published: Jan. 05, 2022
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2022-22109
In Daybyday CRM, version 2.2.0 is vulnerable to Stored Cross-Site Scripting (XSS) vulnerability that allows low privileged application users to store malicious scripts in the title field of new tasks. These scripts are executed in a victim’s browser when ... Read more
- Published: Jan. 05, 2022
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2022-22108
In Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. An attacker that has the lowest privileges account (employee type user), can view the absences of all users in the system including administrators. This type of user is... Read more
- Published: Jan. 05, 2022
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2022-22107
In Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. An attacker that has the lowest privileges account (employee type user), can view the appointments of all users in the system including administrators. However, this ty... Read more
- Published: Jan. 05, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22106
Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto... Read more
- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2022-22105
Memory corruption in bluetooth due to integer overflow while processing HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music... Read more
Affected Products : qca6574au_firmware qca6595au_firmware qca6696_firmware sa6155p_firmware sa8155p_firmware sa8195p_firmware wcn3980_firmware wcn3998_firmware wsa8810_firmware wsa8815_firmware +92 more products- Published: Sep. 16, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22104
Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware +28 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2022-22103
Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon Auto... Read more
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22102
Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto... Read more
Affected Products : qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware qca6574au +8 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
6.2
MEDIUMCVE-2022-22101
Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware +24 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22100
Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware sa8195p_firmware +24 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22099
Memory corruption in multimedia due to improper validation of array index in Snapdragon Auto... Read more
- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22098
Memory corruption in multimedia driver due to untrusted pointer dereference while reading data from socket in Snapdragon Auto... Read more
- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22097
Memory corruption in graphic driver due to use after free while calling multiple threads application to driver. in Snapdragon Consumer IOT... Read more
Affected Products : wcd9341_firmware wcn3980_firmware wsa8810_firmware wsa8815_firmware wcd9370_firmware wcn3950_firmware qcs410_firmware qcs610_firmware qcs410 qcs610 +6 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2022-22096
Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Snapdragon Mobile... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware sd_8_gen1_5g_firmware sd855_firmware sd865_5g_firmware sd870_firmware sd888_5g_firmware sdx55m_firmware wcd9341_firmware +103 more products- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
8.4
HIGHCVE-2022-22095
Memory corruption in synx driver due to use-after-free condition in the synx driver due to accessing object handles without acquiring lock in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware sd855_firmware sd865_5g_firmware sd870_firmware sdx55m_firmware sdxr2_5g_firmware wcd9341_firmware +88 more products- Published: Sep. 16, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2022-22094
memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware +101 more products- Published: Sep. 16, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2022-22093
Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach IRQs from virtual interrupt sources in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mob... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware +101 more products- Published: Sep. 16, 2022
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2022-22092
Memory corruption in kernel due to use after free issue in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware sd_8_gen1_5g_firmware sd865_5g_firmware sd870_firmware sd888_5g_firmware sdx55m_firmware sdxr2_5g_firmware +95 more products- Published: Sep. 16, 2022
- Modified: Nov. 21, 2024