Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.5

MEDIUM

CVE-2022-39067

There is a buffer overflow vulnerability in ZTE MF286R. Due to lack of input validation on parameters of the wifi interface, an authenticated attacker could use the vulnerability to perform a denial of service attack....

Affected Products : mf286r_firmware mf286r
EPSS Score: %0.25

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
8.8

HIGH

CVE-2022-39066

There is a SQL injection vulnerability in ZTE MF286R. Due to insufficient validation of the input parameters of the phonebook interface, an authenticated attacker could use the vulnerability to execute arbitrary SQL injection....

Affected Products : mf286r_firmware mf286r
EPSS Score: %71.36

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
5.4

MEDIUM

CVE-2022-38724

Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through 1.11.0 allow XSS....

Affected Products : framework assets asset_admin
EPSS Score: %0.32

Published: Nov. 23, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-38649

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Airflow Pinot Provider, Apache Airflow allows an attacker to control commands executed in the task execution context, without write access t...

Affected Products : airflow apache-airflow-providers-apache-pinot
EPSS Score: %3.08

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
6.1

MEDIUM

CVE-2022-38462

Silverstripe silverstripe/framework through 4.11 is vulnerable to XSS by carefully crafting a return URL on a /dev/build or /Security/login request....

Affected Products : framework
EPSS Score: %0.57

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
5.3

MEDIUM

CVE-2022-37774

There is a broken access control vulnerability in the Maarch RM 2.8.3 solution. When accessing some specific document (pdf, email) from an archive, a preview is proposed by the application. This preview generates a URL including an md5 hash of the file ac...

Affected Products : maarch_rm
EPSS Score: %0.24

Published: Nov. 23, 2022

Modified: Apr. 29, 2025
8.4

HIGH

CVE-2022-37018

A potential vulnerability has been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerability....

Affected Products : elite_slice_firmware elite_x2_1012_g1_firmware elitebook_1030_g1_firmware elitebook_820_g3_firmware elitebook_828_g3_firmware elitebook_840_g3_firmware elitebook_848_g3_firmware elitebook_850_g3_firmware elitebook_folio_g1_firmware elitedesk_800_g2_sff_firmware +140 more products
EPSS Score: %0.17

Published: Dec. 12, 2022

Modified: Apr. 29, 2025
7.8

HIGH

CVE-2022-1038

A potential security vulnerability has been identified in the HP Jumpstart software, which might allow escalation of privilege. HP is recommending that customers uninstall HP Jumpstart and use myHP software....

Affected Products : jumpstart elitebook_1040_g2 zbook_15_g2 zbook_17_g2 elitebook_725_g3 elitebook_755_g3 elitedesk_800_g2_twr elitedesk_705_g2_mt_sff zbook_15_g3 zbook_15u_g3 +471 more products
EPSS Score: %0.12

Published: Dec. 12, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2021-3821

A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to Denial of Service when running HP Workpath solutions on potentially affected products....

Affected Products : futuresmart_5
EPSS Score: %1.23

Published: Dec. 12, 2022

Modified: Apr. 29, 2025
8.4

HIGH

CVE-2021-3661

A potential security vulnerability has been identified in certain HP Workstation BIOS (UEFI firmware) which may allow arbitrary code execution. HP is releasing firmware mitigations for the potential vulnerability....

Affected Products : z2_mini_g3_firmware z238_microtower_firmware z240_tower_firmware z1_all-in-one_g3_firmware z2_mini_g4_firmware z2_mini_g5_firmware z2_small_form_factor_g4_firmware z2_small_form_factor_g5_firmware z2_small_form_factor_g8_firmware z2_tower_g4_firmware +30 more products
EPSS Score: %1.49

Published: Dec. 12, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2021-3437

Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities....

Affected Products : omen_gaming_hub omen_gaming_hub_sdk envy_te01-0xxx envy_te01-1xxx envy_te01-2xxx omen_25l_desktop_pc_gt11-1000i omen_25l_desktop_pc_gt12-1000i omen_873-0xxx omen_880-0xx omen_880-1xx +40 more products
EPSS Score: %18.85

Published: Dec. 12, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44201

D-Link DIR823G 1.02B05 is vulnerable to Commad Injection....

Affected Products : dir-823g_firmware dir-823g
EPSS Score: %0.80

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44200

Netgear R7000P V1.3.0.8, V1.3.1.64 is vulnerable to Buffer Overflow via parameters: stamode_dns1_pri and stamode_dns1_sec....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44199

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_server_ip....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44198

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameter openvpn_push1....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44197

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_server_ip....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44196

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameter openvpn_push1....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44194

Netgear R7000P V1.3.0.8 is vulnerable to Buffer Overflow via parameters apmode_dns1_pri and apmode_dns1_sec....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.27

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44193

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameters: starthour, startminute , endhour, and endminute....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025
9.8

CRITICAL

CVE-2022-44191

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow via parameters KEY1 and KEY2....

Affected Products : r7000p_firmware r7000p
EPSS Score: %0.39

Published: Nov. 22, 2022

Modified: Apr. 29, 2025

Showing 20 of 291736 Results

1
...
1473
1474
1475
1476
1477
1478
1479
...
14587

Latest CVE Feed

6.5

8.8

5.4

9.8

6.1

5.3

8.4

7.8

9.8

8.4

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

9.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable