‼ CVE-2021-26401 ‼
📖 Read
via "National Vulnerability Database".
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-24095 ‼
📖 Read
via "National Vulnerability Database".
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23930 ‼
📖 Read
via "National Vulnerability Database".
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23928 ‼
📖 Read
via "National Vulnerability Database".
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-24090 ‼
📖 Read
via "National Vulnerability Database".
Adobe Photoshop versions 23.1.1 (and earlier) and 22.5.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-24094 ‼
📖 Read
via "National Vulnerability Database".
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-24097 ‼
📖 Read
via "National Vulnerability Database".
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-32472 ‼
📖 Read
via "National Vulnerability Database".
Teachers exporting a forum in CSV format could receive a CSV of forums from all courses in some circumstances. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6 and 3.8 to 3.8.8 are affected.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-0924 ‼
📖 Read
via "National Vulnerability Database".
Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 408976c4.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-23246 ‼
📖 Read
via "National Vulnerability Database".
In ACE2 ColorOS11, the attacker can obtain the foreground package name through permission promotion, resulting in user information disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23924 ‼
📖 Read
via "National Vulnerability Database".
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23934 ‼
📖 Read
via "National Vulnerability Database".
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-25216 ‼
📖 Read
via "National Vulnerability Database".
An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player (recently renamed PlayerFab) has read-access, by means of an HTTP GET request to http://<IP_ADDRESS>:32080/download/<URL_ENCODED_PATH>.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-24096 ‼
📖 Read
via "National Vulnerability Database".
Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23929 ‼
📖 Read
via "National Vulnerability Database".
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-25621 ‼
📖 Read
via "National Vulnerability Database".
UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE WA 2021 Ver8.2.11 and prior, UNIVERGE WA 2610-AP Ver8.2.11 and prior, UNIVERGE WA 2611-AP Ver8.2.11 and prior, UNIVERGE WA 2611E-AP Ver8.2.11 and prior, UNIVERGE WA WA2612-AP Ver8.2.11 and prior allows a remote attacker to execute arbitrary OS commands.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23187 ‼
📖 Read
via "National Vulnerability Database".
Adobe Illustrator version 26.0.3 (and earlier) is affected by a buffer overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file in Illustrator.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-25601 ‼
📖 Read
via "National Vulnerability Database".
Reflected Cross-Site Scripting (XSS) vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin (versions <= 2.4).📖 Read
via "National Vulnerability Database".
‼ CVE-2021-32475 ‼
📖 Read
via "National Vulnerability Database".
ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-23731 ‼
📖 Read
via "National Vulnerability Database".
V8 javascript engine (heap vulnerability) can cause privilege escalation ,which can impact on some webOS TV models.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26341 ‼
📖 Read
via "National Vulnerability Database".
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.📖 Read
via "National Vulnerability Database".