โผ CVE-2022-2053 โผ
๐ Read
via "National Vulnerability Database".
When a POST request comes through AJP and the request exceeds the max-post-size limit (maxEntitySize), Undertow's AjpServerRequestConduit implementation closes a connection without sending any response to the client/proxy. This behavior results in that a front-end proxy marking the backend worker (application server) as an error state and not forward requests to the worker for a while. In mod_cluster, this continues until the next STATUS request (10 seconds intervals) from the application server updates the server state. So, in the worst case, it can result in "All workers are in error state" and mod_cluster responds "503 Service Unavailable" for a while (up to 10 seconds). In mod_proxy_balancer, it does not forward requests to the worker until the "retry" timeout passes. However, luckily, mod_proxy_balancer has "forcerecovery" setting (On by default; this parameter can force the immediate recovery of all workers without considering the retry parameter of the workers if all workers of a balancer are in error state.). So, unlike mod_cluster, mod_proxy_balancer does not result in responding "503 Service Unavailable". An attacker could use this behavior to send a malicious request and trigger server errors, resulting in DoS (denial of service). This flaw was fixed in Undertow 2.2.19.Final, Undertow 2.3.0.Alpha2.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-46681 โผ
๐ Read
via "National Vulnerability Database".
A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to perform javascript code executions via module massive operation name field.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31660 โผ
๐ Read
via "National Vulnerability Database".
VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2303 โผ
๐ Read
via "National Vulnerability Database".
An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for group members to bypass 2FA enforcement enabled at the group level by using Resource Owner Password Credentials grant to obtain an access token without using 2FA.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31656 โผ
๐ Read
via "National Vulnerability Database".
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-29071 โผ
๐ Read
via "National Vulnerability Database".
This advisory documents an internally found vulnerability in the on premises deployment model of Arista CloudVision Portal (CVP) where under a certain set of conditions, user passwords can be leaked in the Audit and System logs. The impact of this vulnerability is that the CVP user login passwords might be leaked to other authenticated users.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-33718 โผ
๐ Read
via "National Vulnerability Database".
An improper access control vulnerability in Wi-Fi Service prior to SMR AUG-2022 Release 1 allows untrusted applications to manipulate the list of apps that can use mobile data.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-27798 โผ
๐ Read
via "National Vulnerability Database".
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability in Brocade Fabric OS versions v7.4.1b and v7.3.1d could allow local users to conduct privileged directory transversal. Brocade Fabric OS versions v7.4.1.x and v7.3.x have reached end of life. Brocade Fabric OS Users should upgrade to supported versions as described in the Product End-of-Life Publish report.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31665 โผ
๐ Read
via "National Vulnerability Database".
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability. A malicious actor with administrator and network access can trigger a remote code execution.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-1158 โผ
๐ Read
via "National Vulnerability Database".
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-1704 โผ
๐ Read
via "National Vulnerability Database".
Due to an XML external entity reference, the software parses XML in the backup/restore functionality without XML security flags, which may lead to a XXE attack while restoring the backup.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31663 โผ
๐ Read
via "National Vulnerability Database".
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's window.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-33201 โผ
๐ Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in MailerLite รขโฌโ Signup forms (official) plugin <= 1.5.7 at WordPress allows an attacker to change the API key.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-27535 โผ
๐ Read
via "National Vulnerability Database".
Kaspersky VPN Secure Connection for Windows version up to 21.5 was vulnerable to arbitrary file deletion via abuse of its 'Delete All Service Data And Reports' feature by the local authenticated attacker.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-1012 โผ
๐ Read
via "National Vulnerability Database".
A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-33724 โผ
๐ Read
via "National Vulnerability Database".
Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via log.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-36831 โผ
๐ Read
via "National Vulnerability Database".
Path traversal vulnerability in UriFileUtils of Samsung Notes prior to version 4.3.14.39 allows attacker to access some file as Samsung Notes permission.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-36832 โผ
๐ Read
via "National Vulnerability Database".
Improper access control vulnerability in WebApp in Cameralyzer prior to versions 3.2.22, 3.3.22, 3.4.22 and 3.5.51 allows attackers to access external storage as Cameralyzer privilege.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-36839 โผ
๐ Read
via "National Vulnerability Database".
SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows attackers to access IAP information.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-33729 โผ
๐ Read
via "National Vulnerability Database".
Improper restriction of broadcasting Intent in ConfirmConnectActivity of?NFC prior to SMR Aug-2022 Release 1 leaks MAC address of the connected Bluetooth device.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-33721 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability using PendingIntent in DeX for PC prior to SMR Aug-2022 Release 1 allows attackers to access files with system privilege.๐ Read
via "National Vulnerability Database".