Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2022-26112 Vulnerability in maven package org.apache.pinot:pinot-controller Critical CVE-2022-26112 Vulnerability in maven package org.apache.pinot:pinot-spi Critical CVE-2022-26183 Vulnerability in npm package pnpm CWE-426 CWE-426 Critical CVE-2022-26260 Vulnerability in npm package simple-plist CWE-1321 CWE-1321 Critical CVE-2022-26585 Vulnerability in maven package net.mingsoft:ms-mcms CWE-89 CWE-89 Critical CVE-2022-26612 Vulnerability in maven package org.apache.hadoop:hadoop-common CWE-59 CWE-59 Critical CVE-2022-26969 Vulnerability in npm package directus Critical CVE-2022-27139 Vulnerability in npm package ghost CWE-434 CWE-434 Critical CVE-2022-27260 Vulnerability in npm package buttercms CWE-434 CWE-434 Critical CVE-2022-27263 Vulnerability in npm package strapi CWE-434 CWE-434 Critical CVE-2022-27340 Vulnerability in maven package net.mingsoft:ms-mcms CWE-352 CWE-352 Critical CVE-2022-27952 Vulnerability in npm package payload CWE-434 CWE-434 Critical CVE-2022-28150 Vulnerability in maven package com.synopsys.jenkinsci:ownership CWE-352 CWE-352 Critical CVE-2022-28154 Vulnerability in maven package org.jenkins-ci.plugins:covcomplplot CWE-611 CWE-611 Critical CVE-2022-28820 Vulnerability in maven package com.adobe.acs:acs-aem-commons Critical CVE-2022-28820 Vulnerability in maven package com.adobe.acs:acs-aem-commons-ui.apps Critical CVE-2022-28890 Vulnerability in maven package org.apache.jena:jena-core CWE-611 CWE-611 Critical CVE-2022-29002 Vulnerability in maven package com.xuxueli:xxl-job CWE-352 CWE-352 Critical CVE-2022-29078 Vulnerability in maven package org.webjars.npm:ejs CWE-94 CWE-94 Critical CVE-2022-29078 Vulnerability in npm package ejs CWE-94 CWE-94 Critical CVE-2022-29161 Vulnerability in maven package org.xwiki.platform:xwiki-platform-crypto CWE-326 CWE-326 Critical CVE-2022-29166 Vulnerability in npm package matrix-appservice-irc CWE-74 CWE-74 Critical CVE-2022-29166 Vulnerability in npm package matrix-org-irc CWE-74 CWE-74 Critical CVE-2022-29247 Vulnerability in maven package org.webjars.npm:electron Critical CVE-2022-29247 Vulnerability in npm package electron Critical CVE-2022-29599 Vulnerability in maven package org.apache.maven.shared:maven-shared-utils Critical CVE-2022-29647 Vulnerability in maven package net.mingsoft:ms-mcms CWE-352 CWE-352 Critical CVE-2022-29822 Vulnerability in npm package feathers-sequelize CWE-89 CWE-89 Critical CVE-2022-29823 Vulnerability in npm package feathers-sequelize CWE-1321 CWE-1321 Critical CVE-2022-30187 Vulnerability in maven package com.azure:azure-storage-blob CWE-327 CWE-327 Critical CVE-2022-30500 Vulnerability in maven package com.jflyfox:jflyfox_jfinal CWE-89 CWE-89 Critical CVE-2022-30506 Vulnerability in maven package net.mingsoft:ms-mcms CWE-434 CWE-434 Critical CVE-2022-31053 Vulnerability in maven package com.clever-cloud:biscuit-java Critical CVE-2022-31112 Vulnerability in npm package parse-server CWE-212 CWE-212 Critical CVE-2022-31166 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore Critical CVE-2022-31179 Vulnerability in npm package shescape CWE-74 CWE-74 Critical CVE-2022-31180 Vulnerability in npm package shescape Critical CVE-2022-31183 Vulnerability in maven package co.fs2:fs2-io_sjs1_2.12 Critical CVE-2022-31183 Vulnerability in maven package co.fs2:fs2-io_sjs1_2.13 Critical CVE-2022-31183 Vulnerability in maven package co.fs2:fs2-io_sjs1_3 Critical CVE-2022-31197 Vulnerability in maven package org.postgresql:postgresql Critical CVE-2022-31367 Vulnerability in npm package @strapi/strapi CWE-89 CWE-89 Critical CVE-2022-31367 Vulnerability in npm package strapi CWE-89 CWE-89 Critical CVE-2022-31367 Vulnerability in npm package strapi-plugin-content-manager CWE-89 CWE-89 Critical CVE-2022-31367 Vulnerability in npm package strapi-plugin-content-type-builder CWE-89 CWE-89 Critical CVE-2022-31690 Vulnerability in maven package org.springframework.security:spring-security-oauth2-client Critical CVE-2022-31692 Vulnerability in maven package org.springframework.security:spring-security-web Critical CVE-2022-31830 Vulnerability in npm package kityminder CWE-918 CWE-918 Critical CVE-2022-31943 Vulnerability in maven package net.mingsoft:ms-mcms CWE-434 CWE-434 Critical CVE-2022-32114 Vulnerability in npm package @strapi/strapi CWE-434 CWE-434 Critical CVE-2022-32532 Vulnerability in maven package org.apache.shiro:shiro-core CWE-863 CWE-863 Critical CVE-2022-32533 Vulnerability in maven package org.apache.portals.jetspeed-2:jetspeed Critical CVE-2022-33140 Vulnerability in maven package org.apache.nifi.registry:nifi-registry-core CWE-78 CWE-78 Critical CVE-2022-33140 Vulnerability in maven package org.apache.nifi.registry:nifi-registry-framework CWE-78 CWE-78 Critical CVE-2022-33140 Vulnerability in maven package org.apache.nifi:nifi CWE-78 CWE-78 Critical CVE-2022-33140 Vulnerability in maven package org.apache.nifi:nifi-shell-authorizer CWE-78 CWE-78 Critical CVE-2022-33891 Vulnerability in maven package org.apache.spark:spark-core_2.12 CWE-78 CWE-78 Critical CVE-2022-33891 Vulnerability in maven package org.apache.spark:spark-core_2.13 CWE-78 CWE-78 Critical CVE-2022-33980 Vulnerability in maven package org.apache.commons:commons-configuration2 Critical CVE-2022-34113 Vulnerability in maven package io.dataease:dataease-plugin-common Critical CVE-2022-34114 Vulnerability in maven package io.dataease:dataease-plugin-common CWE-89 CWE-89 Critical CVE-2022-34115 Vulnerability in maven package io.dataease:dataease-plugin-common CWE-434 CWE-434 Critical CVE-2022-34158 Vulnerability in maven package org.apache.jspwiki:jspwiki-main CWE-352 CWE-352 Critical CVE-2022-34158 Vulnerability in maven package org.apache.jspwiki:jspwiki-war CWE-352 CWE-352 Critical CVE-2022-34200 Vulnerability in maven package com.convertigo.jenkins.plugins:convertigo-mobile-platform CWE-352 CWE-352 Critical CVE-2022-34271 Vulnerability in maven package org.apache.atlas:atlas-intg CWE-22 CWE-22 Critical CVE-2022-34792 Vulnerability in maven package org.jenkins-ci.plugins:recipe CWE-352 CWE-352 Critical CVE-2022-34793 Vulnerability in maven package org.jenkins-ci.plugins:recipe CWE-611 CWE-611 Critical CVE-2022-34916 Vulnerability in maven package org.apache.flume.flume-ng-sources:flume-jms-source Critical CVE-2022-35131 Vulnerability in npm package joplin CWE-79 CWE-79 Critical CVE-2022-35143 Vulnerability in npm package raneto CWE-521 CWE-521 Critical CVE-2022-35912 Vulnerability in maven package org.grails:grails-databinding Critical CVE-2022-35924 Vulnerability in npm package next-auth CWE-863 CWE-863 Critical CVE-2022-35942 Vulnerability in npm package loopback-connector-postgresql Critical CVE-2022-35949 Vulnerability in maven package org.webjars.npm:undici Critical 1...26272829...36 27 / 36
