CVEs from 2022
Total
5,746
critical
critical 88
high
high 1,220
medium
medium 938
low
low 24
% Critical
1.5%
% with KEV
2.3%
% with exploit
2.5%
Top vendors
Top products
- jdk 116
- jre 109
- openjdk 100
- zulu 82
- graalvm 74
- cloud_secure_agent 35
- oncommand_insight 34
- cloud_insights_acquisition_unit 34
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-28199 | high | — | 8.0 | 4y ago | Important: dpdk security and bug fix update | |||
| CVE-2022-48866 | high | — | 8.0 | 4y ago | RHSA-2024:7001: kernel-rt security update (Important) | |||
| CVE-2022-23816 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-2132 | high | — | 8.0 | 4y ago | RHSA-2023:0171: dpdk security update (Important) | |||
| CVE-2022-50000 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49663 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3239 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-1679 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3787 | high | — | 8.0 | 4y ago | RHSA-2022:7928: device-mapper-multipath security update (Important) | |||
| CVE-2022-49545 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49691 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49180 | high | — | 8.0 | 4y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50048 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50001 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-29901 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-49732 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-50536 | high | — | 8.0 | 4y ago | RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49451 | high | — | 8.0 | 4y ago | In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix list protocols enumeration in the base protocol While enumerating protocols implemented by the SCMI platf… | |||
| CVE-2022-49057 | high | — | 8.0 | 4y ago | RHSA-2024:4211: kernel security and bug fix update (Important) | |||
| CVE-2022-3108 | high | — | 8.0 | 4y ago | RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-49227 | high | — | 8.0 | 4y ago | RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-0396 | high | — | 8.0 | 4y ago | RHSA-2022:7643: bind9.16 security update (Important) | |||
| CVE-2022-50506 | high | — | 8.0 | 4y ago | In the Linux kernel, the following vulnerability has been resolved: drbd: only clone bio if we have a backing device Commit c347a787e34cb (drbd: set ->bi_bdev in drbd_req_new) moved a bio_set_dev c… | |||
| CVE-2022-28693 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-2585 | high | — | 8.0 | 4y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2022-2414 | high | — | 8.0 | 4y ago | RHSA-2022:7470: pki-core:10.6 and pki-deps:10.6 security and bug fix update (Important) | |||
| CVE-2022-30594 | high | — | 8.0 | 4y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2022-3602 | high | — | 8.0 | 4y ago | Important: openssl security update | |||
| CVE-2022-3786 | high | — | 8.0 | 4y ago | Important: openssl security update | |||
| CVE-2022-3644 | high | — | 8.0 | 4y ago | Plaintext storage of tokens in pulp_ansible | |||
| CVE-2022-39251 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-39250 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-39249 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-39236 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-41974 | high | — | 8.0 | 4y ago | RHSA-2022:7928: device-mapper-multipath security update (Important) | |||
| CVE-2022-2588 | high | — | 8.0 | 4y ago | RHSA-2022:7137: kpatch-patch security update (Important) | |||
| CVE-2022-3515 | high | — | 8.0 | 4y ago | RHSA-2022:7089: libksba security update (Important) | |||
| CVE-2022-21986 | high | — | 8.0 | 4y ago | RHSA-2022:0496: .NET 6.0 security and bugfix update (Important) | |||
| CVE-2022-42928 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42932 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42927 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-42929 | high | — | 8.0 | 4y ago | RHSA-2022:7190: thunderbird security update (Important) | |||
| CVE-2022-35255 | high | — | 8.0 | 4y ago | RHSA-2022:7821: nodejs:18 security update (Important) | |||
| CVE-2022-41323 | high | — | 8.0 | 4y ago | In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regula… | |||
| CVE-2022-41318 | high | — | 8.0 | 4y ago | RHSA-2022:6775: squid:4 security update (Important) | |||
| CVE-2022-40674 | high | — | 8.0 | 4y ago | RHSA-2023:3068: mingw-expat security update (Important) | |||
| CVE-2022-42003 | high | — | 8.0 | 4y ago | Uncontrolled Resource Consumption in Jackson-databind | |||
| CVE-2022-42004 | high | — | 8.0 | 4y ago | Uncontrolled Resource Consumption in FasterXML jackson-databind | |||
| CVE-2022-3080 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-38178 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-38177 | high | — | 8.0 | 4y ago | RHSA-2022:6781: bind9.16 security update (Important) | |||
| CVE-2022-3034 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-36059 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40958 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40960 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40962 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3032 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3033 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-3266 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40956 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40959 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-40957 | high | — | 8.0 | 4y ago | RHSA-2022:6708: thunderbird security update (Important) | |||
| CVE-2022-38750 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38749 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38751 | high | — | 8.0 | 4y ago | snakeYAML before 1.31 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-38752 | high | — | 8.0 | 4y ago | snakeYAML before 1.32 vulnerable to Denial of Service due to Out-of-bounds Write | |||
| CVE-2022-31676 | high | — | 8.0 | 4y ago | RHSA-2022:6357: open-vm-tools security update (Important) | |||
| CVE-2022-2735 | high | — | 8.0 | 4y ago | RHSA-2022:6314: pcs security update (Important) | |||
| CVE-2022-2526 | high | — | 8.0 | 4y ago | RHSA-2022:6206: systemd security update (Important) | |||
| CVE-2022-38477 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38476 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-29154 | high | — | 8.0 | 4y ago | RHSA-2022:6180: rsync security update (Important) | |||
| CVE-2022-38478 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38472 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-38473 | high | — | 8.0 | 4y ago | RHSA-2022:6175: firefox security update (Important) | |||
| CVE-2022-36124 | high | — | 8.0 | 4y ago | It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.1… | |||
| CVE-2022-0494 | high | — | 8.0 | 4y ago | RHSA-2022:7134: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-31626 | high | — | 8.0 | 4y ago | RHSA-2022:5468: php:8.0 security update (Important) | |||
| CVE-2022-36318 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-2505 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-36319 | high | — | 8.0 | 4y ago | RHSA-2022:5777: firefox security update (Important) | |||
| CVE-2022-31107 | high | — | 8.0 | 4y ago | RHSA-2022:5717: grafana security update (Important) | |||
| CVE-2022-21541 | high | — | 8.0 | 4y ago | RHSA-2022:5726: java-17-openjdk security, bug fix, and enhancement update (Important) | |||
| CVE-2022-31163 | high | — | 8.0 | 4y ago | TZInfo is a Ruby library that provides access to time zone data and allows times to be converted using time zone rules. Versions prior to 0.36.1, as well as those prior to 1.2.10 when used with the R… | |||
| CVE-2022-24724 | high | — | 8.0 | 4y ago | RHSA-2022:5597: pandoc security update (Important) | |||
| CVE-2022-33980 | high | — | 8.0 | 4y ago | Code injection in Apache Commons Configuration | |||
| CVE-2022-34265 | high | — | 8.0 | 4y ago | An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name val… | |||
| CVE-2022-34470 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34472 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34484 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-34481 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-31744 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-1729 | high | — | 8.0 | 4y ago | RHSA-2022:5565: kernel-rt security and bug fix update (Important) | |||
| CVE-2022-34468 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-2200 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-2226 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-25313 | high | — | 8.0 | 4y ago | RHSA-2022:7811: mingw-expat security update (Important) | |||
| CVE-2022-25314 | high | — | 8.0 | 4y ago | RHSA-2022:7811: mingw-expat security update (Important) | |||
| CVE-2022-34479 | high | — | 8.0 | 4y ago | RHSA-2022:5470: thunderbird security update (Important) | |||
| CVE-2022-27666 | high | — | 8.0 | 4y ago | RHSA-2022:5344: kernel-rt security and bug fix update (Important) |