CVEs from 2022
Total
5,732
critical
critical 88
high
high 1,220
medium
medium 938
low
low 24
% Critical
1.5%
% with KEV
2.3%
% with exploit
3.1%
Top vendors
Top products
- jdk 116
- jre 109
- openjdk 100
- zulu 82
- graalvm 74
- cloud_secure_agent 35
- oncommand_insight 34
- cloud_insights_acquisition_unit 34
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-0396 | high | — | 8.0 | 4y ago | RHSA-2022:7643: bind9.16 security update (Important) | |||
| CVE-2022-50048 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50536 | high | — | 8.0 | 4y ago | RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49545 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50001 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3108 | high | — | 8.0 | 4y ago | RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-28199 | high | — | 8.0 | 4y ago | Important: dpdk security and bug fix update | |||
| CVE-2022-48866 | high | — | 8.0 | 4y ago | RHSA-2024:7001: kernel-rt security update (Important) | |||
| CVE-2022-49732 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49663 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-1679 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49691 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50506 | high | — | 8.0 | 4y ago | In the Linux kernel, the following vulnerability has been resolved: drbd: only clone bio if we have a backing device Commit c347a787e34cb (drbd: set ->bi_bdev in drbd_req_new) moved a bio_set_dev c… | |||
| CVE-2022-50000 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49180 | high | — | 8.0 | 4y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3239 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49057 | high | — | 8.0 | 4y ago | RHSA-2024:4211: kernel security and bug fix update (Important) | |||
| CVE-2022-23816 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-36369 | high | — | 8.0 | 4y ago | RHBA-2022:7667: qatzip bug fix and enhancement update (Important) | |||
| CVE-2022-1353 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-23825 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-28693 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-29900 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-29901 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-2585 | high | — | 8.0 | 4y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2022-2414 | high | — | 8.0 | 4y ago | RHSA-2022:7470: pki-core:10.6 and pki-deps:10.6 security and bug fix update (Important) | |||
| CVE-2022-30594 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3786 | high | — | 8.0 | 4y ago | Important: openssl security update | |||
| CVE-2022-3602 | high | — | 8.0 | 4y ago | Important: openssl security update | |||
| CVE-2022-3644 | high | — | 8.0 | 4y ago | Plaintext storage of tokens in pulp_ansible | |||
| CVE-2022-41974 | high | — | 8.0 | 4y ago | RHSA-2022:7928: device-mapper-multipath security update (Important) | |||
| CVE-2022-39236 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-39251 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-39249 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-2588 | high | — | 8.0 | 4y ago | RHSA-2022:7137: kpatch-patch security update (Important) | |||
| CVE-2022-39250 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-3515 | high | — | 8.0 | 4y ago | A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing speci… | |||
| CVE-2022-21986 | high | — | 8.0 | 4y ago | RHSA-2022:0496: .NET 6.0 security and bugfix update (Important) | |||
| CVE-2022-42927 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42932 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42929 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42928 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-35255 | high | — | 8.0 | 4y ago | RHSA-2022:7821: nodejs:18 security update (Important) | |||
| CVE-2022-41323 | high | — | 8.0 | 4y ago | In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regula… | |||
| CVE-2022-40674 | high | — | 8.0 | 4y ago | RHSA-2023:3068: mingw-expat security update (Important) | |||
| CVE-2022-41318 | high | — | 8.0 | 4y ago | RHSA-2022:6775: squid:4 security update (Important) | |||
| CVE-2022-42003 | high | — | 8.0 | 4y ago | Uncontrolled Resource Consumption in Jackson-databind | |||
| CVE-2022-42004 | high | — | 8.0 | 4y ago | Uncontrolled Resource Consumption in FasterXML jackson-databind | |||
| CVE-2022-3080 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-38178 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-38177 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-3266 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40960 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40957 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40959 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40962 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3032 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3033 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40956 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-36059 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3034 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40958 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-38749 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38750 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38751 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38752 | high | — | 8.0 | 4y ago | snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-31676 | high | — | 8.0 | 4y ago | RHSA-2022:6357: open-vm-tools security update (Important) | |||
| CVE-2022-2735 | high | — | 8.0 | 4y ago | RHSA-2022:6314: pcs security update (Important) | |||
| CVE-2022-2526 | high | — | 8.0 | 4y ago | RHSA-2022:6206: systemd security update (Important) | |||
| CVE-2022-38478 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38473 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38476 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-29154 | high | — | 8.0 | 4y ago | RHSA-2022:6180: rsync security update (Important) | |||
| CVE-2022-38477 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38472 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-36124 | high | — | 8.0 | 4y ago | It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.1… | |||
| CVE-2022-0494 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-31626 | high | — | 8.0 | 4y ago | RHSA-2022:5468: php:8.0 security update (Important) | |||
| CVE-2022-36319 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-2505 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-36318 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-31107 | high | — | 8.0 | 4y ago | RHSA-2022:5717: grafana security update (Important) | |||
| CVE-2022-21541 | high | — | 8.0 | 4y ago | RHSA-2022:5726: java-17-openjdk security, bug fix, and enhancement update (Important) | |||
| CVE-2022-31163 | high | — | 8.0 | 4y ago | TZInfo is a Ruby library that provides access to time zone data and allows times to be converted using time zone rules. Versions prior to 0.36.1, as well as those prior to 1.2.10 when used with the R… | |||
| CVE-2022-24724 | high | — | 8.0 | 4y ago | RHSA-2022:5597: pandoc security update (Important) | |||
| CVE-2022-33980 | high | — | 8.0 | 4y ago | Code injection in Apache Commons Configuration | |||
| CVE-2022-34265 | high | — | 8.0 | 4y ago | An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name val… | |||
| CVE-2022-2226 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34479 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-25313 | high | — | 8.0 | 4y ago | RHSA-2022:7811: mingw-expat security update (Important) | |||
| CVE-2022-34481 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-31744 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-1729 | high | — | 8.0 | 4y ago | RHSA-2022:5565: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-25314 | high | — | 8.0 | 4y ago | RHSA-2022:7811: mingw-expat security update (Important) | |||
| CVE-2022-34472 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34468 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34484 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34470 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-2200 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-32250 | high | — | 8.0 | 4y ago | RHSA-2022:5839: kpatch-patch security update (Important) |