Latest CVE Feed
-
5.3
MEDIUMCVE-2024-32715
Missing Authorization vulnerability in Olive Themes Olive One Click Demo Import.This issue affects Olive One Click Demo Import: from n/a through 1.1.1.... Read more
Affected Products : olive_one_click_demo_import- Published: Jun. 09, 2024
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2024-36302
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the ta... Read more
Affected Products : apex_one- Published: Jun. 10, 2024
- Modified: May. 29, 2025
-
7.3
HIGHCVE-2023-46309
Missing Authorization vulnerability in gVectors Team wpDiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through 7.6.10.... Read more
Affected Products : wpdiscuz- Published: Jan. 02, 2025
- Modified: May. 29, 2025
- Vuln Type: Authorization
-
7.2
HIGH- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35771
Windows Defender Credential Guard Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 +4 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.5
HIGHCVE-2022-35769
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +12 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35768
Windows Kernel Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +12 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
8.1
HIGHCVE-2022-35767
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +12 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
8.1
HIGHCVE-2022-35766
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 windows +2 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35765
Storage Spaces Direct Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows windows_10_21h1 +1 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35764
Storage Spaces Direct Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows windows_10_21h1 +1 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35763
Storage Spaces Direct Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows windows_10_21h1 +1 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35762
Storage Spaces Direct Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows windows_10_21h1 +1 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
7.8
HIGHCVE-2022-35761
Windows Kernel Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 +3 more products- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
5.9
MEDIUMCVE-2022-34716
.NET Spoofing Vulnerability... Read more
Affected Products : powershell_core .net_core visual_studio_2017 visual_studio_2019 .net powershell visual_studio_2022- Published: Aug. 09, 2022
- Modified: May. 29, 2025
-
8.8
HIGHCVE-2024-5246
NETGEAR ProSAFE Network Management System Tomcat Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required t... Read more
- Published: May. 23, 2024
- Modified: May. 29, 2025
-
9.3
CRITICALCVE-2024-40505
Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.... Read more
- Published: Jul. 16, 2024
- Modified: May. 29, 2025
-
6.1
MEDIUMCVE-2025-29690
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the outtype parameter at /address/AddrController.java.... Read more
Affected Products : oa_system- Published: May. 14, 2025
- Modified: May. 29, 2025
- Vuln Type: Cross-Site Scripting
-
6.1
MEDIUMCVE-2025-29689
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the password parameter at /mail/MailController.java.... Read more
Affected Products : oa_system- Published: May. 14, 2025
- Modified: May. 29, 2025
- Vuln Type: Cross-Site Scripting
-
6.1
MEDIUMCVE-2025-29688
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the title parameter at /daymanager/daymanageabilitycontroller.java.... Read more
Affected Products : oa_system- Published: May. 14, 2025
- Modified: May. 29, 2025
- Vuln Type: Cross-Site Scripting