Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.5

    MEDIUM
    CVE-2022-43255

    GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_odf_new_iod at odf/odf_code.c.... Read more

    Affected Products : gpac
    • EPSS Score: %0.03
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2022-43254

    GPAC v2.1-DEV-rev368-gfd054169b-master was discovered to contain a memory leak via the component gf_list_new at utils/list.c.... Read more

    Affected Products : gpac
    • EPSS Score: %0.03
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43253

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_unweighted_pred_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.11
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43252

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.11
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43250

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_qpel_0_0_fallback_16 in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.15
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43249

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_epel_hv_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.13
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43248

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via put_weighted_pred_avg_16_fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.11
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43238

    Libde265 v1.0.8 was discovered to contain an unknown crash via ff_hevc_put_hevc_qpel_h_3_v_3_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43237

    Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via void put_epel_hv_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43236

    Libde265 v1.0.8 was discovered to contain a stack-buffer-overflow vulnerability via put_qpel_fallback<unsigned short> in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-43235

    Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via ff_hevc_put_hevc_epel_pixels_8_sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted video file.... Read more

    Affected Products : debian_linux libde265
    • EPSS Score: %0.11
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 8.8

    HIGH
    CVE-2022-43226

    Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/?page=appointments/view_appointment.... Read more

    • EPSS Score: %0.08
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 7.5

    HIGH
    CVE-2022-43223

    open5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted UE attachment.... Read more

    Affected Products : open5gs
    • EPSS Score: %0.09
    • Published: Nov. 01, 2022
    • Modified: May. 02, 2025

  • 7.2

    HIGH
    CVE-2022-43068

    Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation.... Read more

    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 7.2

    HIGH
    CVE-2022-43066

    Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/classes/Master.php?f=delete_message.... Read more

    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 7.2

    HIGH
    CVE-2022-41551

    Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /garage/editorder.php.... Read more

    Affected Products : garage_management_system
    • EPSS Score: %0.09
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 6.1

    MEDIUM
    CVE-2022-40840

    ndk design NdkAdvancedCustomizationFields 3.5.0 is vulnerable to Cross Site Scripting (XSS) via createPdf.php.... Read more

    Affected Products : ndkadvancedcustomizationfields
    • EPSS Score: %0.15
    • Published: Nov. 02, 2022
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2022-40276

    Zettlr version 2.3.0 allows an external attacker to remotely obtain arbitrary local files on any client that attempts to view a malicious markdown file through Zettlr. This is possible because the application does not have a CSP policy (or at least not st... Read more

    Affected Products : zettlr
    • EPSS Score: %0.04
    • Published: Nov. 03, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-40235

    "IBM InfoSphere Information Server 11.7 could allow a user to cause a denial of service by removing the ability to run jobs due to improper input validation. IBM X-Force ID: 235725."... Read more

    • EPSS Score: %0.10
    • Published: Nov. 03, 2022
    • Modified: May. 02, 2025

  • 6.5

    MEDIUM
    CVE-2022-40230

    "IBM MQ Appliance 9.2 CD, 9.2 LTS, 9.3 CD, and LTS 9.3 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 235532."... Read more

    Affected Products : mq_appliance
    • EPSS Score: %0.05
    • Published: Nov. 03, 2022
    • Modified: May. 02, 2025
Showing 20 of 291162 Results