CVE 2022 34974 D Link DIR810LA1 FW102B22 was
CVE-2022-34974

D-Link DIR810LA1_FW102B22 was discovered to contain a command injection vulnerability via the Ping_addr function.

📖 Read

via "National Vulnerability Database".
CVE 2022 32292 In ConnMan through 1 41
CVE-2022-32292

In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.

📖 Read

via "National Vulnerability Database".
CVE 2022 34973 D Link DIR820LA1 FW106B02 was
CVE-2022-34973

D-Link DIR820LA1_FW106B02 was discovered to contain a buffer overflow via the nextPage parameter at ping.ccp.

📖 Read

via "National Vulnerability Database".
CVE 2022 27484 A unverified password change in
CVE-2022-27484

A unverified password change in Fortinet FortiADC version 6.2.0 through 6.2.3, 6.1.x, 6.0.x, 5.x.x allows an authenticated attacker to bypass the Old Password check in the password change form via a crafted HTTP request.

📖 Read

via "National Vulnerability Database".
CVE 2022 35619 D LINK DIR 818LW A1
CVE-2022-35619

D-LINK DIR-818LW A1:DIR818L_FW105b01 was discovered to contain a remote code execution (RCE) vulnerability via the function ssdpcgi_main.

📖 Read

via "National Vulnerability Database".
CVE 2022 35620 D LINK DIR 818LW A1
CVE-2022-35620

D-LINK DIR-818LW A1:DIR818L_FW105b01 was discovered to contain a remote code execution (RCE) vulnerability via the function binary.soapcgi_main.

📖 Read

via "National Vulnerability Database".
CVE 2022 36359 An issue was discovered in
CVE-2022-36359

An issue was discovered in the HTTP FileResponse class in Django 3.2 before 3.2.15 and 4.0 before 4.0.7. An application is vulnerable to a reflected file download (RFD) attack that sets the Content-Disposition header of a FileResponse when the filename is derived from user-supplied input.

📖 Read

via "National Vulnerability Database".