Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Concientización
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2022-32842
2022-09-23
HIGH
7.8
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in Security Update 2022-005 Catalina, macOS…
CVE-2022-32841
2022-09-23
MEDIUM
5.5
The issue was addressed with improved memory handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and…
CVE-2022-32831
2022-09-23
HIGH
7.1
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Big…
CVE-2022-32828
2022-09-23
MEDIUM
5.5
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, tvOS 15.6,…
CVE-2022-32825
2022-09-23
MEDIUM
5.5
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big…
CVE-2022-32805
2022-09-23
MEDIUM
5.5
The issue was addressed with improved handling of caches. This issue is fixed in Security Update 2022-005 Catalina, macOS Big…
CVE-2022-32801
2022-09-23
HIGH
7.8
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.5. An app may be able…
CVE-2022-32800
2022-09-23
MEDIUM
5.5
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8,…
CVE-2022-32799
2022-09-23
MEDIUM
5.9
An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS…
CVE-2022-2853
2022-09-26
HIGH
8.8
Heap buffer overflow in Downloads in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker who had compromised…
CVE-2022-2987
2022-09-26
HIGH
7.5
The Ldap WP Login / Active Directory Integration WordPress plugin before 3.0.2 does not have any authorisation and CSRF checks…
CVE-2022-32220
2022-09-23
MEDIUM
6.5
An information disclosure vulnerability exists in Rocket.Chat
CVE-2022-32219
2022-09-23
MEDIUM
4.3
An information disclosure vulnerability exists in Rocket.Chat
CVE-2022-2852
2022-09-26
HIGH
8.8
Use after free in FedCM in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption…
CVE-2022-22629
2022-09-23
HIGH
8.8
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4,…
CVE-2022-0080
2022-01-02
CRITICAL
9.8
mruby is vulnerable to Heap-based Buffer Overflow
CVE-2021-41819
2022-01-01
HIGH
7.5
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for…
CVE-2021-30337
2022-01-03
HIGH
8.4
Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in…
CVE-2025-2257
2025-03-26
HIGH
7.2
The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote…
CVE-2024-9545
2024-12-21
MEDIUM
6.4
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's…
CVE-2024-12588
2024-12-21
MEDIUM
6.4
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's…
CVE-2024-12042
2024-12-13
MEDIUM
5.4
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to Stored…
CVE-2024-31022
2024-04-08
CRITICAL
9.8
An issue was discovered in CandyCMS version 1.0.0, allows remote attackers to execute arbitrary code via the install.php component.
CVE-2024-9461
2024-11-26
HIGH
7.2
The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote…
CVE-2024-8486
2024-10-05
MEDIUM
6.4
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’…
CVE-2025-40571
2025-05-13
LOW
2.2
A vulnerability has been identified in Mendix OIDC SSO (Mendix 10 compatible) (All versions < V4.1.0), Mendix OIDC SSO (Mendix…
CVE-2022-41604
2022-09-27
HIGH
8.8
Check Point ZoneAlarm Extreme Security before 15.8.211.19229 allows local users to escalate privileges. This occurs because of weak permissions for…
CVE-2022-40785
2022-09-26
HIGH
8.8
Unsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3.1.2003161406. This allows an attacker…
CVE-2022-40353
2022-09-27
HIGH
7.2
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at…
CVE-2022-40352
2022-09-27
HIGH
7.2
Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at…
CVE-2022-40784
2022-09-26
HIGH
8.8
Unlimited strcpy on user input when setting a locale file leads to stack buffer overflow in mIPC camera firmware 5.3.1.2003161406.
CVE-2022-3074
2022-09-26
MEDIUM
4.8
The Slider Hero WordPress plugin before 8.4.4 does not escape the slider Name, which could allow high-privileged users to perform…
CVE-2022-3070
2022-09-26
MEDIUM
4.8
The Generate PDF WordPress plugin before 3.6 does not sanitise and escape its settings, allowing high privilege users such as…
CVE-2022-3047
2022-09-26
MEDIUM
6.5
Insufficient policy enforcement in Extensions API in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to…
CVE-2022-3046
2022-09-26
HIGH
8.8
Use after free in Browser Tag in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to…
CVE-2022-3045
2022-09-26
HIGH
8.8
Insufficient validation of untrusted input in V8 in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit…
CVE-2022-3044
2022-09-26
MEDIUM
6.5
Inappropriate implementation in Site Isolation in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who had compromised the renderer…
CVE-2022-3069
2022-09-26
MEDIUM
4.8
The WordLift WordPress plugin before 3.37.2 does not sanitise and escape its settings, allowing high privilege users such as admin…
CVE-2022-37209
2022-09-27
HIGH
8.8
JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have…
CVE-2022-37193
2022-09-27
HIGH
7.4
Chipolo ONE Bluetooth tracker (2020) Chipolo iOS app version 4.13.0 is vulnerable to Incorrect Access Control. Chipolo devices suffer from…
CVE-2022-31367
2022-09-27
HIGH
8.8
Strapi before 3.6.10 and 4.x before 4.1.10 mishandles hidden attributes within admin API responses.
CVE-2022-32845
2022-09-23
CRITICAL
10.0
This issue was addressed with improved checks. This issue is fixed in watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS…
CVE-2022-2857
2022-09-26
HIGH
8.8
Use after free in Blink in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption…
CVE-2022-2855
2022-09-26
HIGH
8.8
Use after free in ANGLE in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption…
CVE-2022-2854
2022-09-26
HIGH
8.8
Use after free in SwiftShader in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption…
CVE-2025-37968
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: iio: light: opt3001: fix deadlock due to concurrent flag access…
CVE-2025-37967
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: displayport: Fix deadlock This patch introduces the…
CVE-2025-37960
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: memblock: Accept allocated memory before use in memblock_double_array() When increasing…
CVE-2025-37957
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception Previously,…
CVE-2025-22102
2025-04-16
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix kernel panic during FW release This fixes…
« Anterior
Página 387 de 3519
Siguiente »
Page load link
Go to Top
