Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-32935PUBLISHED: 2022-05-23The affected Cognex product, the In-Sight OPC Server versions v5.7.4 (96) and prior, deserializes untrusted data, which could allow a remote attacker access to system level permission commands and local privilege escalation.
CVE-2021-32941PUBLISHED: 2022-05-23Annke N48PBB (Network Video Recorder) products of version 3.4.106 build 200422 and prior are vulnerable to a stack-based buffer overflow, which allows an unauthorized remote attacker to execute arbitrary code with the same privileges as the server user (root).
CVE-2021-42233PUBLISHED: 2022-05-23The Simple Blog plugin in Wondercms 3.4.1 is vulnerable to stored cross-site scripting (XSS) vulnerability. When any user opens a particular blog hosted on an attackers' site, XSS may occur.
CVE-2022-31466PUBLISHED: 2022-05-23Quick Heal Total Security before 12.1.1.27 has a TOCTOU race condition that leads to privilege escalation. It may follow a symlink that was created after a malware check.
CVE-2022-31467PUBLISHED: 2022-05-23Quick Heal Total Security before 12.1.1.27 allows DLL hijacking during installation.