Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.5

HIGH

CVE-2022-21940

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute vulnerability in Johnson Controls System Configuration Tool (SCT) version 14 prior to 14.2.3 and version 15 prior to 15.0.3 could allow access to the cookie....

Affected Products : metasys_system_configuration_tool
Published: Feb. 09, 2023

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2022-21939

Sensitive Cookie Without 'HttpOnly' Flag vulnerability in Johnson Controls System Configuration Tool (SCT) version 14 prior to 14.2.3 and version 15 prior to 15.0.3 could allow access to the cookie....

Affected Products : metasys_system_configuration_tool
Published: Feb. 09, 2023

Modified: Nov. 21, 2024
8.1

HIGH

CVE-2022-21938

Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the MUI Graphics web interface....

Affected Products : metasys_application_and_data_server metasys_extended_application_and_data_server metasys_open_application_server
Published: Jun. 15, 2022

Modified: Nov. 21, 2024
8.7

HIGH

CVE-2022-21937

Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the web interface....

Affected Products : metasys_application_and_data_server metasys_extended_application_and_data_server metasys_open_application_server
Published: Jun. 15, 2022

Modified: Nov. 21, 2024
8.1

HIGH

CVE-2022-21936

On Metasys ADX Server version 12.0 running MVE, an Active Directory user could execute validated actions without providing a valid password when using MVE SMP UI....

Affected Products : metasys_extended_application_and_data_server metasys_for_validated_environments
Published: Oct. 07, 2022

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2022-21935

A vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 allows unverified password change....

Affected Products : metasys_application_and_data_server metasys_extended_application_and_data_server metasys_open_application_server
Published: Jun. 15, 2022

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2022-21934

Under certain circumstances an authenticated user could lock other users out of the system or take over their accounts in Metasys ADS/ADX/OAS server 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS server 11 versions prior to 11.0.2....

Affected Products : metasys_application_and_data_server metasys_extended_application_and_data_server metasys_open_application_server
Published: May. 06, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2022-21933

ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker with system privilege can use system management interrupt (SMI) to modify memory, resulting in arbitrary code execution for controlling the system or disrupting ...

Affected Products : vc65-c1_firmware pb60v_firmware pb60g_firmware pb60s_firmware pa90_firmware pb50_firmware pb60_firmware pb61v_firmware ts10_firmware pn40_firmware +16 more products
Published: Jan. 21, 2022

Modified: Nov. 21, 2024
7.6

HIGH

CVE-2022-21932

Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability...

Affected Products : dynamics_365
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
4.2

MEDIUM

CVE-2022-21931

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability...

Affected Products : edge_chromium
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
4.2

MEDIUM

CVE-2022-21930

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability...

Affected Products : edge_chromium
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
2.6

LOW

CVE-2022-21929

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability...

Affected Products : edge_chromium
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
6.9

MEDIUM

CVE-2022-21928

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 windows_10_1809 windows_10_20h2 +10 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2022-21927

HEVC Video Extensions Remote Code Execution Vulnerability...

Affected Products : hevc_video_extensions
Published: Feb. 09, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2022-21926

HEVC Video Extensions Remote Code Execution Vulnerability...

Affected Products : hevc_video_extensions
Published: Feb. 09, 2022

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2022-21925

Windows BackupKey Remote Protocol Security Feature Bypass Vulnerability...

Affected Products : windows_7 windows_server_2008 windows windows_server_2008_r2 windows_server_2008_sp2
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2022-21924

Workstation Service Remote Protocol Security Feature Bypass Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2022-21922

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2022-21921

Windows Defender Credential Guard Security Feature Bypass Vulnerability...

Affected Products : windows_10 windows_server windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 windows windows_10_21h1 windows_server_20h2
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2022-21920

Windows Kerberos Elevation of Privilege Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024

Showing 20 of 294846 Results

Browse by Apps

Latest CVE Feed

7.5

7.5

8.1

8.7

8.1

7.5

8.8

7.8

7.6

4.2

4.2

2.6

6.9

7.8

7.8

5.4

5.4

9.0

4.9

9.0

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable