| | CVE-2022-44702 | Microsoft | high | 7.8 | 9.8%
| | Windows Terminal Remote Code Execution Vulnerability | Dec 13, 2022 | May 27, 2026 |
| | CVE-2022-44696 | Microsoft | high | 7.8 | 2.3%
| | Microsoft Office Visio Remote Code Execution Vulnerability | Dec 13, 2022 | May 19, 2026 |
| | CVE-2022-44695 | Microsoft | high | 7.8 | 2.3%
| | Microsoft Office Visio Remote Code Execution Vulnerability | Dec 13, 2022 | May 19, 2026 |
| | CVE-2022-44694 | Microsoft | high | 7.8 | 1.6%
| | Microsoft Office Visio Remote Code Execution Vulnerability | Dec 13, 2022 | May 19, 2026 |
| | CVE-2022-43549 | Veeam | critical | 9.8 | — | | Improper authentication in Veeam Backup for Google Cloud v1.0 and v3.0 allows attackers to bypass au… | Dec 5, 2022 | Apr 24, 2025 |
| | CVE-2022-32221 | Splunk | critical | 9.8 | 1.8%
| | When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION… | Dec 5, 2022 | Feb 13, 2026 |
| | CVE-2022-45047 | Apache | critical | 9.8 | 5.7%
| | Class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider in Apache MINA SSHD <= 2.9.1… | Nov 16, 2022 | May 1, 2026 |
| | CVE-2022-20922 | Cisco | medium | 5.8 | 0.8%
| | Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detecti… | Nov 15, 2022 | Jun 22, 2026 |
| | CVE-2022-41107 | Microsoft | high | 7.8 | 2.2%
| | Microsoft Office Graphics Remote Code Execution Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41106 | Microsoft | high | 8.8 | 17.6%
| | Microsoft Excel Remote Code Execution Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41105 | Microsoft | medium | 5.5 | 1.7%
| | Microsoft Excel Information Disclosure Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41104 | Microsoft | medium | 5.5 | 2.5%
| | Microsoft Excel Security Feature Bypass Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41103 | Microsoft | medium | 5.5 | 1.6%
| | Microsoft Word Information Disclosure Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41063 | Microsoft | high | 7.8 | 2.3%
| | Microsoft Excel Remote Code Execution Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41061 | Microsoft | high | 7.8 | 1.2%
| | Microsoft Word Remote Code Execution Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-41060 | Microsoft | medium | 5.5 | 1.7%
| | Microsoft Word Information Disclosure Vulnerability | Nov 9, 2022 | May 19, 2026 |
| | CVE-2022-20969 | Cisco | medium | 4.8 | 0.4%
| | A vulnerability in multiple management dashboard pages of Cisco Umbrella could allow an authenticate… | Nov 4, 2022 | Jun 22, 2026 |
| | CVE-2022-42916 | Splunk | high | 7.5 | 0.1%
| | In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using it… | Oct 29, 2022 | Feb 13, 2026 |
| | CVE-2022-24670 | ForgeRock | high | 7.1 | — | | An attacker can use the unrestricted LDAP queries to determine configuration entries | Oct 27, 2022 | Nov 21, 2024 |
| | CVE-2022-24669 | ForgeRock | medium | 6.5 | — | | It may be possible to gain some details of the deployment through a well-crafted attack. This may al… | Oct 27, 2022 | Nov 21, 2024 |
| | CVE-2022-40684 | Fortinet | critical | 9.8 | 94.4%
| ⚠ KEV | An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.… | Oct 18, 2022 | Jan 14, 2026 |
| | CVE-2022-20775 | Cisco | high | 7.8 | 0.5%
| ⚠ KEV | A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to … | Sep 30, 2022 | Feb 26, 2026 |
| | CVE-2022-23726 | ForgeRock | medium | 5.4 | — | | PingCentral versions prior to listed versions expose Spring Boot actuator endpoints that with admini… | Sep 30, 2022 | Nov 21, 2024 |
| | CVE-2022-0143 | ForgeRock | critical | 9.3 | — | | When the LDAP connector is started with StartTLS configured, unauthenticated access is granted. This… | Sep 19, 2022 | Nov 21, 2024 |
| | CVE-2022-38013 | Microsoft | high | 7.5 | 1.8%
| | .NET Core and Visual Studio Denial of Service Vulnerability | Sep 13, 2022 | May 27, 2026 |
| | CVE-2021-4040 | Apache | medium | 5.3 | 2.4%
| | A flaw was found in AMQ Broker. This issue can cause a partial interruption to the availability of A… | Aug 24, 2022 | Jun 15, 2026 |
| | CVE-2022-35278 | Apache | medium | 6.1 | 1.4%
| | In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect… | Aug 23, 2022 | Jun 15, 2026 |
| | CVE-2022-36124 | Apache | high | 7.5 | 1.3%
| | It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of… | Aug 9, 2022 | Jun 23, 2026 |
| | CVE-2022-35737 | Splunk | high | 7.5 | 51.9%
| | SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of … | Aug 3, 2022 | Feb 13, 2026 |
| | CVE-2022-34169 | Apache | high | 7.5 | 11.0%
| | The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing mali… | Jul 19, 2022 | May 27, 2026 |
| | CVE-2022-32225 | Veeam | medium | 6.1 | — | | A reflected DOM-Based XSS vulnerability has been discovered in the Help directory of Veeam Managemen… | Jul 14, 2022 | Nov 21, 2024 |
| | CVE-2022-23725 | ForgeRock | high | 7.7 | — | | PingID Windows Login prior to 2.8 does not properly set permissions on the Windows Registry entries … | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2022-23720 | ForgeRock | high | 7.5 | — | | PingID Windows Login prior to 2.8 does not alert or halt operation if it has been provisioned with t… | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2022-23719 | ForgeRock | high | 7.2 | — | | PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used… | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2022-23718 | ForgeRock | high | 7.6 | — | | PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code exec… | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2022-23717 | ForgeRock | medium | 5.0 | — | | PingID Windows Login prior to 2.8 is vulnerable to a denial of service condition on local machines w… | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2021-41995 | ForgeRock | high | 7.7 | — | | A misconfiguration of RSA in PingID Mac Login prior to 1.1 is vulnerable to pre-computed dictionary … | Jun 30, 2022 | Nov 21, 2024 |
| | CVE-2022-32156 | Splunk | high | 8.1 | 0.2%
| | In Splunk Enterprise and Universal Forwarder versions before 9.0, the Splunk command-line interface … | Jun 15, 2022 | Feb 25, 2026 |
| | CVE-2022-27782 | Splunk | high | 7.5 | 0.5%
| | libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been ch… | Jun 2, 2022 | May 27, 2026 |
| | CVE-2022-27781 | Splunk | high | 7.5 | 0.1%
| | libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returne… | Jun 2, 2022 | May 27, 2026 |
| | CVE-2022-27775 | Splunk | high | 7.5 | 0.2%
| | An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using… | Jun 2, 2022 | May 27, 2026 |
| | CVE-2022-27774 | Splunk | medium | 5.7 | 0.3%
| | An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 … | Jun 2, 2022 | May 27, 2026 |
| | CVE-2022-22576 | Splunk | high | 8.1 | 0.3%
| | An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might a… | May 26, 2022 | May 27, 2026 |
| | CVE-2022-22977 | VMware | high | 7.1 | 0.0%
| | VMware Tools for Windows(12.0.0, 11.x.y and 10.x.y) contains an XML External Entity (XXE) vulnerabil… | May 24, 2022 | Jun 2, 2026 |
| | CVE-2022-23742 | Check Point | high | 7.8 | 0.1%
| | Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensi… | May 12, 2022 | Jun 2, 2026 |
| | CVE-2022-29145 | Microsoft | high | 7.5 | 4.8%
| | .NET and Visual Studio Denial of Service Vulnerability | May 10, 2022 | May 27, 2026 |
| | CVE-2022-29117 | Microsoft | high | 7.5 | 2.2%
| | .NET and Visual Studio Denial of Service Vulnerability | May 10, 2022 | May 27, 2026 |
| | CVE-2022-29109 | Microsoft | high | 7.8 | 2.4%
| | Microsoft Excel Remote Code Execution Vulnerability | May 10, 2022 | May 19, 2026 |
| | CVE-2022-29107 | Microsoft | medium | 5.5 | 7.7%
| | Microsoft Office Security Feature Bypass Vulnerability | May 10, 2022 | May 19, 2026 |
| | CVE-2022-26934 | Microsoft | medium | 6.5 | 17.4%
| | Windows Graphics Component Information Disclosure Vulnerability | May 10, 2022 | May 19, 2026 |