Critical Severity Vulnerabilities

28.6K CVEs classified as critical severity

CRITICAL

Total CVEs

28.6K

Vulnerabilities

Avg CVSS

9.8

Critical

Max CVSS

9.8

Highest

Min CVSS

9.8

Lowest

Browse by Severity

Critical Severity CVEs

Page 395 of 1190

CVE-2022-37134

CRITICAL

CVSS:9.8(Critical)

D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Buffer Overflow via /goform/form2Wan.cgi. When wantype is 3, l2tp_usrname will be decrypted by base64, and the result will be stored in v94, which doe...

CVE-2022-37130

CRITICAL

CVSS:9.8(Critical)

In D-Link DIR-816 A2_v1.10CNB04, DIR-878 DIR_878_FW1.30B08.img a command injection vulnerability occurs in /goform/Diagnosis, after the condition is met, setnum will be spliced into v10 by snprintf, a...

CVE-2022-37128

CRITICAL

CVSS:9.8(Critical)

In D-Link DIR-816 A2_v1.10CNB04.img the network can be initialized without authentication via /goform/wizard_end.

CVE-2022-37125

CRITICAL

CVSS:9.8(Critical)

D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Command injection via /goform/NTPSyncWithHost.

CVE-2022-37113

CRITICAL

CVSS:9.8(Critical)

Bluecms 1.6 has SQL injection in line 132 of admin/area.php

CVE-2022-37112

CRITICAL

CVSS:9.8(Critical)

BlueCMS 1.6 has SQL injection in line 55 of admin/model.php

CVE-2022-37111

CRITICAL

CVSS:9.8(Critical)

BlueCMS 1.6 has SQL injection in line 132 of admin/article.php

CVE-2022-37109

CRITICAL

CVSS:9.8(Critical)

patrickfuller camp up to and including commit bbd53a256ed70e79bd8758080936afbf6d738767 is vulnerable to Incorrect Access Control. Access to the password.txt file is not properly restricted as it is in...

CVE-2022-37100

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateMacClone.

CVE-2022-37099

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateSnat.

CVE-2022-37098

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateIpv6Params.

CVE-2022-37097

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPInfoById.

CVE-2022-37096

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EnableIpv6.

CVE-2022-37095

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateWanParams.

CVE-2022-37094

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID_5G.

CVE-2022-37093

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function AddMacList.

CVE-2022-37092

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById.

CVE-2022-37091

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditWlanMacList.

CVE-2022-37090

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID.

CVE-2022-37089

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditMacList.

CVE-2022-37088

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAP5GWifiById.

CVE-2022-37087

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetMobileAPInfoById.

CVE-2022-37086

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed.

CVE-2022-37085

CRITICAL

CVSS:9.8(Critical)

H3C H200 H200V100R004 was discovered to contain a stack overflow via the AddWlanMacList function.