Latest CVE Feed
-
8.8
HIGHCVE-2022-2001
The DX Share Selection plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.4. This is due to missing nonce protection on the dxss_admin_page() function found in the ~/dx-share-selection.php file. This makes ... Read more
Affected Products : dx_share_selection- EPSS Score: %0.32
- Published: Jul. 18, 2022
- Modified: May. 05, 2025
-
5.9
MEDIUMCVE-2022-29593
relay_cgi.cgi on Dingtian DT-R002 2CH relay devices with firmware 3.1.276A allows an attacker to replay HTTP post requests without the need for authentication or a valid signed/authorized request.... Read more
- EPSS Score: %6.39
- Published: Jul. 14, 2022
- Modified: May. 05, 2025
-
4.4
MEDIUMCVE-2022-28709
Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.1.9 may allow a privileged user to potentially enable denial of service via local access.... Read more
- EPSS Score: %0.05
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
6.8
MEDIUMCVE-2022-28697
Improper access control in firmware for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable escalation of privilege via physical access.... Read more
- EPSS Score: %0.31
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
7.8
HIGHCVE-2022-28696
Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.... Read more
Affected Products : distribution_for_python- EPSS Score: %0.07
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2022-28388
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.... Read more
Affected Products : linux_kernel fedora debian_linux h410c_firmware h300s_firmware h500s_firmware h700s_firmware h410s_firmware h300s h410s +9 more products- EPSS Score: %0.01
- Published: Apr. 03, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2022-28356
In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.... Read more
- EPSS Score: %0.02
- Published: Apr. 02, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2022-27500
Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may allow an authenticated user to potentially enable information disclosure via local access.... Read more
Affected Products : support- EPSS Score: %0.04
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2022-26373
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.... Read more
- EPSS Score: %0.28
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
4.4
MEDIUMCVE-2022-26074
Incomplete cleanup in a firmware subsystem for Intel(R) SPS before versions SPS_E3_04.08.04.330.0 and SPS_E3_04.01.04.530.0 may allow a privileged user to potentially enable denial of service via local access.... Read more
Affected Products : server_platform_services_firmware- EPSS Score: %0.14
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
8.0
HIGHCVE-2022-26017
Improper access control in the Intel(R) DSA software for before version 22.2.14 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.... Read more
Affected Products : driver_\&_support_assistant- EPSS Score: %0.35
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
7.8
HIGHCVE-2022-25999
Uncontrolled search path element in the Intel(R) Enpirion(R) Digital Power Configurator GUI software, all versions may allow an authenticated user to potentially enable escalation of privilege via local access.... Read more
- EPSS Score: %0.07
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
7.8
HIGHCVE-2022-25966
Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access.... Read more
Affected Products : edge_insights_for_industrial- EPSS Score: %0.06
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
7.8
HIGHCVE-2022-25841
Uncontrolled search path elements in the Intel(R) Datacenter Group Event Android application, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.... Read more
Affected Products : datacenter_group_event- EPSS Score: %0.07
- Published: Aug. 18, 2022
- Modified: May. 05, 2025
-
9.8
CRITICALCVE-2022-25315
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.... Read more
Affected Products : fedora zfs_storage_appliance_kit debian_linux http_server sinema_remote_connect_server libexpat- EPSS Score: %7.70
- Published: Feb. 18, 2022
- Modified: May. 05, 2025
-
7.5
HIGHCVE-2022-25314
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.... Read more
Affected Products : fedora zfs_storage_appliance_kit debian_linux http_server sinema_remote_connect_server libexpat- EPSS Score: %0.36
- Published: Feb. 18, 2022
- Modified: May. 05, 2025
-
9.8
CRITICALCVE-2022-25236
xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.... Read more
Affected Products : zfs_storage_appliance_kit debian_linux http_server sinema_remote_connect_server libexpat- EPSS Score: %9.36
- Published: Feb. 16, 2022
- Modified: May. 05, 2025
-
9.8
CRITICALCVE-2022-25235
xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.... Read more
Affected Products : fedora zfs_storage_appliance_kit debian_linux http_server sinema_remote_connect_server libexpat- EPSS Score: %13.32
- Published: Feb. 16, 2022
- Modified: May. 05, 2025
-
6.5
MEDIUMCVE-2022-24436
Observable behavioral in power management throttling for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via network access.... Read more
Affected Products : *- EPSS Score: %15.56
- Published: Jun. 15, 2022
- Modified: May. 05, 2025
-
6.7
MEDIUMCVE-2022-24382
Improper input validation in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.... Read more
Affected Products : nuc_11_compute_element_cm11ebi38w_firmware nuc_11_compute_element_cm11ebi58w_firmware nuc_11_compute_element_cm11ebi716w_firmware nuc_11_pro_board_nuc11tnbi3_firmware nuc_11_pro_board_nuc11tnbi5_firmware nuc_11_pro_board_nuc11tnbi7_firmware nuc_11_pro_kit_nuc11tnhi3_firmware nuc_11_pro_kit_nuc11tnhi30l_firmware nuc_11_pro_kit_nuc11tnhi30p_firmware nuc_11_pro_kit_nuc11tnhi5_firmware +108 more products- EPSS Score: %0.06
- Published: May. 12, 2022
- Modified: May. 05, 2025