The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
ID | Description | Priority | Modified date | Fixed Release |
---|---|---|---|---|
CVE-2022-37092 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById. | -- | Aug 25, 2022 | n/a |
CVE-2022-37091 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditWlanMacList. | -- | Aug 25, 2022 | n/a |
CVE-2022-37090 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID. | -- | Aug 25, 2022 | n/a |
CVE-2022-37089 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditMacList. | -- | Aug 25, 2022 | n/a |
CVE-2022-37088 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAP5GWifiById. | -- | Aug 25, 2022 | n/a |
CVE-2022-37087 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetMobileAPInfoById. | -- | Aug 25, 2022 | n/a |
CVE-2022-37086 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed. | -- | Aug 25, 2022 | n/a |
CVE-2022-37085 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the AddWlanMacList function. | -- | Aug 25, 2022 | n/a |
CVE-2022-37084 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the sPort parameter at the addEffect function. | -- | Aug 26, 2022 | n/a |
CVE-2022-37083 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the ip parameter at the function setDiagnosisCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37082 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the host_time parameter at the function NTPSyncWithHost. | -- | Aug 26, 2022 | n/a |
CVE-2022-37081 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the command parameter at setting/setTracerouteCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37080 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the command parameter at setting/setTracerouteCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37079 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37078 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the lang parameter at /setting/setLanguageCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37077 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the pppoeUser parameter. | -- | Aug 27, 2022 | n/a |
CVE-2022-37076 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile. | -- | Aug 26, 2022 | n/a |
CVE-2022-37075 | TOTOLink A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the ip parameter in the function setDiagnosisCfg. | -- | Aug 26, 2022 | n/a |
CVE-2022-37074 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function switch_debug_info_set. | -- | Aug 26, 2022 | n/a |
CVE-2022-37073 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanModeMulti. | -- | Aug 25, 2022 | n/a |
CVE-2022-37072 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanLinkspyMulti. | -- | Aug 25, 2022 | n/a |
CVE-2022-37071 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateOne2One. | -- | Aug 25, 2022 | n/a |
CVE-2022-37070 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList. | -- | Aug 25, 2022 | n/a |
CVE-2022-37069 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateSnat. | -- | Aug 25, 2022 | n/a |
CVE-2022-37068 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateMacCloneFinal. | -- | Aug 25, 2022 | n/a |
CVE-2022-37067 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanParamsMulti. | -- | Aug 25, 2022 | n/a |
CVE-2022-37066 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateDDNS. | -- | Aug 25, 2022 | n/a |
CVE-2022-37057 | D-Link Go-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 are vulnerable to Command Injection via cgibin, ssdpcgi_main. | -- | Aug 28, 2022 | n/a |
CVE-2022-37056 | D-Link GO-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 is vulnerable to Command Injection via /cgibin, hnap_main, | -- | Aug 28, 2022 | n/a |
CVE-2022-37055 | D-Link Go-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 are vulnerable to Buffer Overflow via cgibin, hnap_main, | -- | Aug 28, 2022 | n/a |
CVE-2022-37053 | TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36945 | The Remote Keyless Entry (RKE) receiving unit on certain Mazda vehicles through 2020 allows remote attackers to perform unlock operations and force a resynchronization after capturing three consecutive valid key-fob signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely. | -- | Aug 24, 2022 | n/a |
CVE-2022-36804 | Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17, from version 7.7.0 before version 7.17.10, from version 7.18.0 before version 7.21.4, from version 8.0.0 before version 8.0.3, from version 8.1.0 before version 8.1.3, and from version 8.2.0 before version 8.2.2, and from version 8.3.0 before 8.3.1 allows remote attackers with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request. This vulnerability was reported via our Bug Bounty Program by TheGrandPew. | -- | Aug 25, 2022 | n/a |
CVE-2022-36756 | DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36755 | D-Link DIR845L A1 contains a authentication vulnerability via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36721 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Textbook parameter at /admin/modify.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36720 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/modify1.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36719 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36716 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/changestock.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36715 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36708 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36707 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-2214. Reason: This candidate is a reservation duplicate of CVE-2022-2214. Notes: All CVE users should reference CVE-2022-2214 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | -- | Aug 28, 2022 | n/a |
CVE-2022-36706 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_stockout.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36705 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_waste.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36704 | Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetails.php. | -- | Aug 28, 2022 | n/a |
CVE-2022-36703 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /stocks/manage_stockin.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36701 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /items/view_item.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36700 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /items/manage_item.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36699 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/manage_category.php. | -- | Aug 27, 2022 | n/a |
CVE-2022-36698 | Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/view_category.php. | -- | Aug 27, 2022 | n/a |