Critical
|
19 May 2022 |
13 Dec 2023 |
CPAI-2022-0251
|
|
CVE-2022-30525
|
Zyxel USG Command Injection (CVE-2022-30525)
|
High
|
18 Oct 2022 |
30 Nov 2023 |
CPAI-2020-3601
|
|
CVE-2020-28948
|
PEAR Archive Tar Insecure Deserialization Code Execution (CVE-2020-28948)
|
High
|
31 Oct 2022 |
28 Nov 2023 |
CPAI-2022-0775
|
|
CVE-2022-24288
|
Apache Airflow Command Injection (CVE-2022-24288)
|
High
|
26 May 2022 |
23 Nov 2023 |
CPAI-2018-1803
|
|
CVE-2018-17553
|
Naviwebs Navigate CMS Arbitrary File Upload (CVE-2018-17553)
|
Critical
|
1 Jun 2022 |
21 Nov 2023 |
CPAI-2022-0283
|
|
CVE-2022-30190
|
Microsoft Support Diagnostic Tool Remote Code Execution (CVE-2022-30190)
|
Critical
|
27 Apr 2022 |
15 Nov 2023 |
CPAI-2022-0206
|
|
CVE-2022-22954
|
VMware Workspace Remote Code Execution (CVE-2022-22954)
|
High
|
2 Feb 2022 |
13 Nov 2023 |
CPAI-2021-1058
|
|
CVE-2021-21315
|
Node.JS System Information Command Injection (CVE-2021-21315)
|
Critical
|
28 Mar 2022 |
12 Nov 2023 |
CPAI-2021-1025
|
|
CVE-2021-36260
|
Hikvision Web Server Command Injection (CVE-2021-36260)
|
High
|
11 Oct 2022 |
6 Nov 2023 |
CPAI-2022-0641
|
Microsoft CVE-2022-38053
|
CVE-2022-38053
|
Microsoft SharePoint Server Remote Code Execution (CVE-2022-38053)
|
Critical
|
22 Nov 2022 |
2 Nov 2023 |
CPAI-2022-0886
|
|
CVE-2022-28575 CVE-2022-28577 CVE-2022-28578 CVE-2022-28579 CVE-2022-28580 CVE-2022-28581 CVE-2022-28582 CVE-2022-28583 CVE-2022-28584 CVE-2023-24236 CVE-2023-24238 CVE-2023-24276 CVE-2023-25395 CVE-2023-26848
|
TOTOLINK A7100RU Router Command Injection (CVE-2022-28575; CVE-2022-28577; CVE-2022-28578; CVE-2022-28579; CVE-2022-28580; CVE-2022-28581; CVE-2022-28582; CVE-2022-28583; CVE-2022-28584; CVE-2023-24236; CVE-2023-24238; CVE-2023-24276; CVE-2023-25395; CVE-2023-26848)
|
Critical
|
25 Dec 2022 |
1 Nov 2023 |
CPAI-2018-2218
|
|
CVE-2018-13353 CVE-2018-13354 CVE-2018-13418 CVE-2020-35665 CVE-2021-45836 CVE-2021-45837 CVE-2021-45840 CVE-2022-24989
|
TerraMaster TOS Command Injection (CVE-2018-13353; CVE-2018-13354; CVE-2018-13418; CVE-2020-35665; CVE-2021-45836; CVE-2021-45837; CVE-2021-45840; CVE-2022-24989)
|
Critical
|
3 Nov 2022 |
30 Oct 2023 |
CPAI-2022-0794
|
|
CVE-2022-23221
|
H2 Database Remote Code Execution (CVE-2022-23221)
|
High
|
29 Dec 2022 |
29 Oct 2023 |
CPAI-2022-1111
|
|
CVE-2022-22719
|
Apache httpd Denial of Service (CVE-2022-22719)
|
Medium
|
8 Dec 2022 |
29 Oct 2023 |
CPAI-2021-1474
|
|
CVE-2021-28125
|
Apache Superset Open Redirect (CVE-2021-28125)
|
Medium
|
3 Jan 2022 |
29 Oct 2023 |
CPAI-2021-1011
|
|
CVE-2021-44832
|
Apache Log4j2 Remote Code Execution (CVE-2021-44832)
|
High
|
14 Nov 2022 |
26 Oct 2023 |
CPAI-2021-1359
|
|
CVE-2021-43319
|
Zoho ManageEngine Command Injection (CVE-2021-43319)
|
Critical
|
3 Apr 2022 |
26 Oct 2023 |
CPAI-2018-1799
|
|
CVE-2018-14839
|
LG N1A1 Command Injection (CVE-2018-14839)
|
Critical
|
2 May 2022 |
24 Oct 2023 |
CPAI-2022-0208
|
|
CVE-2022-27115
|
Studio-42 elFinder Remote Code Execution (CVE-2022-27115)
|
Critical
|
5 Apr 2022 |
24 Oct 2023 |
CPAI-2022-0067
|
|
CVE-2022-24112
|
Apache APISIX Remote Code Execution (CVE-2022-24112)
|
Critical
|
13 Jun 2022 |
22 Oct 2023 |
CPAI-2022-0295
|
|
CVE-2022-29303 CVE-2022-40881
|
Contec SolarView Compact Command Injection (CVE-2022-29303; CVE-2022-40881)
|
Critical
|
11 Apr 2022 |
22 Oct 2023 |
CPAI-2021-1156
|
|
CVE-2021-45382
|
D-Link Routers Command Injection (CVE-2021-45382)
|
Critical
|
13 Apr 2022 |
22 Oct 2023 |
CPAI-2017-1220
|
|
CVE-2017-6316
|
Citrix NetScaler SD-WAN Command Injection (CVE-2017-6316)
|
High
|
16 Aug 2022 |
12 Oct 2023 |
CPAI-2022-0515
|
|
CVE-2022-27925 CVE-2022-37042
|
Zimbra Collaboration Directory Traversal (CVE-2022-27925; CVE-2022-37042)
|
Critical
|
17 Nov 2022 |
26 Sep 2023 |
CPAI-2018-2149
|
|
CVE-2018-7890
|
Zoho ManageEngine ApplicationManager Command Injection (CVE-2018-7890)
|
High
|
14 Dec 2022 |
26 Sep 2023 |
CPAI-2018-2142
|
|
CVE-2018-16873
|
Golang Go Remote Code Execution (CVE-2018-16873)
|
Medium
|
24 Oct 2022 |
26 Sep 2023 |
CPAI-2018-2130
|
|
CVE-2018-15706
|
Advantech WebAccess Directory Traversal (CVE-2018-15706)
|
Critical
|
24 Oct 2022 |
26 Sep 2023 |
CPAI-2017-1530
|
|
CVE-2017-14803
|
NetIQ Access Manager Directory Traversal (CVE-2017-14803)
|
High
|
27 Oct 2022 |
26 Sep 2023 |
CPAI-2018-2128
|
|
CVE-2018-8045
|
Joomla! SQL Injection (CVE-2018-8045)
|
Critical
|
16 Aug 2022 |
26 Sep 2023 |
CPAI-2022-0507
|
|
CVE-2018-5445 CVE-2022-26352
|
dotCMS Arbitrary File Upload (CVE-2022-26352; CVE-2018-5445)
|
High
|
26 Dec 2022 |
14 Sep 2023 |
CPAI-2018-2209
|
|
CVE-2018-0707 CVE-2018-0708 CVE-2018-0709 CVE-2018-0710
|
QNAP Qcenter Command Injection (CVE-2018-0707; CVE-2018-0708; CVE-2018-0709; CVE-2018-0710)
|
High
|
4 Dec 2022 |
10 Sep 2023 |
CPAI-2022-0944
|
|
CVE-2020-28320 CVE-2021-42840 CVE-2022-27474
|
SalesAgility SuiteCRM Remote Code Execution (CVE-2022-27474; CVE-2020-28320; CVE-2021-42840)
|
Critical
|
31 Mar 2022 |
16 Aug 2023 |
CPAI-2022-0095
|
|
CVE-2022-0543
|
Redis Lua Remote Code Execution (CVE-2022-0543)
|
Critical
|
17 May 2022 |
14 Aug 2023 |
CPAI-2017-1223
|
|
CVE-2017-12478 CVE-2018-6328
|
Kaseya Unitrends Backup Remote Code Execution (CVE-2017-12478; CVE-2018-6328)
|
Critical
|
2 May 2022 |
10 Jul 2023 |
CPAI-2022-0213
|
|
CVE-2022-26258
|
D-Link DIR-820L Command Injection (CVE-2022-26258)
|
Critical
|
18 Dec 2022 |
27 Jun 2023 |
CPAI-2019-2706
|
|
CVE-2019-7816
|
Adobe ColdFusion Arbitrary File Upload (CVE-2019-7816)
|
Critical
|
8 Jun 2022 |
27 Jun 2023 |
CPAI-2022-0281
|
|
|
HTTP User Agent Remote Code Execution
|
Critical
|
14 Nov 2022 |
22 Jun 2023 |
CPAI-2022-0807
|
|
CVE-2022-1292
|
OpenSSL Command Injection (CVE-2022-1292)
|
Medium
|
17 Nov 2022 |
18 Jun 2023 |
CPAI-2022-0879
|
|
|
MatrixSSL Verify X.509 Certificate Stack Buffer Overflow
|
High
|
11 Dec 2022 |
5 Jun 2023 |
CPAI-2022-1075
|
|
CVE-2022-41128
|
Microsoft Windows Type Confusion (CVE-2022-41128)
|
Critical
|
19 Dec 2022 |
28 May 2023 |
CPAI-2022-1066
|
|
CVE-2018-7034 CVE-2022-28956
|
Multiple Routers Authentication Bypass (CVE-2018-7034; CVE-2022-28956)
|
Critical
|
2 May 2022 |
17 May 2023 |
CPAI-2022-0207
|
|
CVE-2022-25075 CVE-2022-38511
|
TOTOLink A3000R Command Injection (CVE-2022-25075; CVE-2022-38511)
|
Medium
|
13 Oct 2022 |
14 May 2023 |
CPAI-2022-0645
|
Adobe APSB22-44
|
CVE-2022-38421
|
Adobe ColdFusion Remote Code Execution (APSB22-44: CVE-2022-38421)
|
Critical
|
6 Nov 2022 |
10 May 2023 |
CPAI-2022-0758
|
|
CVE-2022-2486 CVE-2022-2488
|
Wavlink Routers Command Injection (CVE-2022-2486; CVE-2022-2488)
|
Medium
|
9 Jun 2022 |
7 May 2023 |
CPAI-2022-0275
|
|
CVE-2022-28810
|
Zoho ManageEngine ADSelfService Plus Command Injection (CVE-2022-28810)
|
Critical
|
8 Dec 2022 |
4 May 2023 |
CPAI-2022-0985
|
|
CVE-2022-37802 CVE-2022-37803 CVE-2022-37804 CVE-2022-37805 CVE-2022-37806 CVE-2022-37807 CVE-2022-37808 CVE-2022-37809 CVE-2022-37811 CVE-2022-37812 CVE-2022-37813 CVE-2022-37814 CVE-2022-37815 CVE-2022-37816
|
Tenda AC1206 Stack Overflow (CVE-2022-37802; CVE-2022-37803; CVE-2022-37804; CVE-2022-37805; CVE-2022-37806; CVE-2022-37807; CVE-2022-37808; CVE-2022-37809; CVE-2022-37811; CVE-2022-37812; CVE-2022-37813; CVE-2022-37814; CVE-2022-37815; CVE-2022-37816)
|
Critical
|
8 Dec 2022 |
4 May 2023 |
CPAI-2022-0972
|
|
CVE-2022-35519 CVE-2022-35520 CVE-2022-35521 CVE-2022-35522 CVE-2022-35523 CVE-2022-35524 CVE-2022-35525 CVE-2022-35526 CVE-2022-35533 CVE-2022-35534 CVE-2022-35535 CVE-2022-35536 CVE-2022-35537 CVE-2022-35538
|
WAVLINK Routers Command Injection (CVE-2022-35519; CVE-2022-35520; CVE-2022-35521; CVE-2022-35522; CVE-2022-35523; CVE-2022-35524; CVE-2022-35525; CVE-2022-35526; CVE-2022-35533; CVE-2022-35534; CVE-2022-35535; CVE-2022-35536; CVE-2022-35537; CVE-2022-35538)
|
High
|
12 Oct 2022 |
1 May 2023 |
CPAI-2018-2125
|
|
CVE-2018-12498 CVE-2018-12888
|
iCMS Article SQL Injection (CVE-2018-12498; CVE-2018-12888)
|
High
|
9 Aug 2022 |
1 May 2023 |
CPAI-2022-0475
|
|
CVE-2022-35755
|
Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-35755)
|
High
|
9 Aug 2022 |
1 May 2023 |
CPAI-2022-0474
|
|
CVE-2022-35793
|
Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-35793)
|
High
|
29 Dec 2022 |
30 Apr 2023 |
CPAI-2021-1532
|
|
CVE-2021-3156
|
Sudo Project Buffer Overflow (CVE-2021-3156)
|