Latest CVE Feed
-
6.2
MEDIUMCVE-2022-25679
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6430_firmware sd_8_gen1_5g_firmware sd855_firmware sd865_5g_firmware sd870_firmware sd888_5g_firmware +124 more products- Published: Nov. 15, 2022
- Modified: Apr. 22, 2025
-
7.8
HIGHCVE-2022-25677
Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware sa6145p_firmware +276 more products- Published: Dec. 13, 2022
- Modified: Apr. 22, 2025
-
6.8
MEDIUMCVE-2022-25676
Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables... Read more
Affected Products : aqt1000_firmware qam8295p_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware +204 more products- Published: Nov. 15, 2022
- Modified: Apr. 22, 2025
-
5.5
MEDIUMCVE-2022-25675
Denial of service due to reachable assertion in modem while processing filter rule from application client in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile... Read more
Affected Products : aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6430_firmware sd855_firmware sd865_5g_firmware sd870_firmware sd888_5g_firmware sdx55m_firmware +88 more products- Published: Dec. 13, 2022
- Modified: Apr. 22, 2025
-
7.5
HIGHCVE-2022-25673
Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile... Read more
Affected Products : android sd_8_gen1_5g_firmware wcd9380_firmware wcn6855_firmware wcn6856_firmware wcn7850_firmware wcn7851_firmware wsa8830_firmware wsa8835_firmware ar8035_firmware +19 more products- Published: Dec. 13, 2022
- Modified: Apr. 22, 2025
-
7.5
HIGHCVE-2022-25672
Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile... Read more
Affected Products : android sd_8_gen1_5g_firmware wcd9380_firmware wcd9385_firmware wcn3988_firmware wcn3998_firmware wcn6855_firmware wcn6856_firmware wcn7850_firmware wcn7851_firmware +39 more products- Published: Dec. 13, 2022
- Modified: Apr. 22, 2025
-
7.5
HIGHCVE-2022-25671
Denial of service in MODEM due to reachable assertion in Snapdragon Mobile... Read more
Affected Products : android sd_8_gen1_5g_firmware wcd9380_firmware wcn6855_firmware wcn6856_firmware wcn7850_firmware wcn7851_firmware wsa8830_firmware wsa8835_firmware ar8035_firmware +19 more products- Published: Nov. 15, 2022
- Modified: Apr. 22, 2025
-
7.5
HIGHCVE-2022-25667
Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking... Read more
Affected Products : ar9380_firmware csr8811_firmware ipq4018_firmware ipq4028_firmware ipq4029_firmware ipq5010_firmware ipq5028_firmware ipq6000_firmware ipq6010_firmware ipq6018_firmware +128 more products- Published: Nov. 15, 2022
- Modified: Apr. 22, 2025
-
7.2
HIGHCVE-2022-23741
An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed a scoped user-to-server token to escalate to full admin/owner privileges. An attacker would require an account with admin access to install a malicious GitHub... Read more
Affected Products : enterprise_server- Published: Dec. 14, 2022
- Modified: Apr. 22, 2025
-
7.8
HIGHCVE-2021-47068
In the Linux kernel, the following vulnerability has been resolved: net/nfc: fix use-after-free llcp_sock_bind/connect Commits 8a4cd82d ("nfc: fix refcount leak in llcp_sock_connect()") and c33b1cc62 ("nfc: fix refcount leak in llcp_sock_bind()") fixed ... Read more
Affected Products : linux_kernel- Published: Feb. 29, 2024
- Modified: Apr. 22, 2025
-
5.5
MEDIUMCVE-2021-46961
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Do not enable irqs when handling spurious interrups We triggered the following error while running our 4.19 kernel with the pseudo-NMI patches backported to it: [ 14.... Read more
Affected Products : linux_kernel- Published: Feb. 27, 2024
- Modified: Apr. 22, 2025
-
7.8
HIGHCVE-2021-46950
In the Linux kernel, the following vulnerability has been resolved: md/raid1: properly indicate failure when ending a failed write request This patch addresses a data corruption bug in raid1 arrays using bitmaps. Without this fix, the bitmap bits for th... Read more
Affected Products : linux_kernel- Published: Feb. 27, 2024
- Modified: Apr. 22, 2025
-
5.5
MEDIUMCVE-2021-46939
In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure trace_clock_global() to never block It was reported that a fix to the ring buffer recursion detection would cause a hung machine when performing suspend / resume te... Read more
Affected Products : linux_kernel- Published: Feb. 27, 2024
- Modified: Apr. 22, 2025
-
6.1
MEDIUMCVE-2024-33305
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "Middle Name" parameter in Create User.... Read more
Affected Products : laboratory_management_system- Published: May. 02, 2024
- Modified: Apr. 22, 2025
-
7.2
HIGHCVE-2022-30002
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editNominee.php?nominee_id=.... Read more
- Published: May. 12, 2022
- Modified: Apr. 22, 2025
-
9.8
CRITICALCVE-2022-30000
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editPayment.php?recipt_no=.... Read more
- Published: May. 12, 2022
- Modified: Apr. 22, 2025
-
9.8
CRITICALCVE-2022-30001
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editAgent.php?agent_id=.... Read more
- Published: May. 12, 2022
- Modified: Apr. 22, 2025
-
7.1
HIGHCVE-2022-34560
A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the History parameter.... Read more
Affected Products : phpfox- Published: Apr. 22, 2024
- Modified: Apr. 22, 2025
-
4.3
MEDIUMCVE-2022-34561
A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the video description parameter.... Read more
Affected Products : phpfox- Published: Apr. 22, 2024
- Modified: Apr. 22, 2025
-
6.1
MEDIUMCVE-2022-34562
A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box.... Read more
Affected Products : phpfox- Published: Apr. 22, 2024
- Modified: Apr. 22, 2025