‼ CVE-2022-3133 ‼
📖 Read
via "National Vulnerability Database".
OS Command Injection in GitHub repository jgraph/drawio prior to 20.3.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36109 ‼
📖 Read
via "National Vulnerability Database".
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases, potentially gaining access to sensitive information or gaining the ability to execute code in that container. This bug is fixed in Moby (Docker Engine) 20.10.18. Running containers should be stopped and restarted for the permissions to be fixed. For users unable to upgrade, this problem can be worked around by not using the `"USER $USERNAME"` Dockerfile instruction. Instead by calling `ENTRYPOINT ["su", "-", "user"]` the supplementary groups will be set up properly.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40647 ‼
📖 Read
via "National Vulnerability Database".
In man2html 1.6g, a specific string being read in from a file will overwrite the size parameter in the top chunk of the heap. This at least causes the program to segmentation abort if the heap size parameter isn't aligned correctly. In version before GLIBC version 2.29 and aligned correctly, it allows arbitrary write anywhere in the programs memory.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40648 ‼
📖 Read
via "National Vulnerability Database".
In man2html 1.6g, a filename can be created to overwrite the previous size parameter of the next chunk and the fd, bk, fd_nextsize, bk_nextsize of the current chunk. The next chunk is then freed later on, causing a freeing of an arbitrary amount of memory.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-31006 ‼
📖 Read
via "National Vulnerability Database".
indy-node is the server portion of Hyperledger Indy, a distributed ledger purpose-built for decentralized identity. In vulnerable versions of indy-node, an attacker can max out the number of client connections allowed by the ledger, leaving the ledger unable to be used for its intended purpose. However, the ledger content will not be impacted and the ledger will resume functioning after the attack. This attack exploits the trade-off between resilience and availability. Any protection against abusive client connections will also prevent the network being accessed by certain legitimate users. As a result, validator nodes must tune their firewall rules to ensure the right trade-off for their network's expected users. The guidance to network operators for the use of firewall rules in the deployment of Indy networks has been modified to better protect against denial of service attacks by increasing the cost and complexity in mounting such attacks. The mitigation for this vulnerability is not in the Hyperledger Indy code per se, but rather in the individual deployments of Indy. The mitigations should be applied to all deployments of Indy, and are not related to a particular release.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38638 ‼
📖 Read
via "National Vulnerability Database".
Casdoor v1.97.3 was discovered to contain an arbitrary file write vulnerability via the fullFilePath parameter at /api/upload-resource.📖 Read
via "National Vulnerability Database".
👍1
‼ CVE-2022-36087 ‼
📖 Read
via "National Vulnerability Database".
OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of `uri_validate` functions depending where it is used. OAuthLib applications using OAuth2.0 provider support or use directly `uri_validate` are affected by this issue. Version 3.2.1 contains a patch. There are no known workarounds.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36110 ‼
📖 Read
via "National Vulnerability Database".
Netmaker makes networks with WireGuard. Prior to version 0.15.1, Improper Authorization functions lead to non-privileged users running privileged API calls. If someone adds users to the Netmaker platform who do not have admin privileges, they can use their auth tokens to run admin-level functions via the API. This problem has been patched in v0.15.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40320 ‼
📖 Read
via "National Vulnerability Database".
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-37819 ‼
📖 Read
via "National Vulnerability Database".
PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf/PdfReader.java.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38266 ‼
📖 Read
via "National Vulnerability Database".
An issue in the Leptonica linked library (v1.79.0) in Tesseract v5.0.0 allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40325 ‼
📖 Read
via "National Vulnerability Database".
SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR# 67262.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40323 ‼
📖 Read
via "National Vulnerability Database".
SysAid Help Desk before 22.1.65 allows XSS in the Password Services module, aka FR# 67241.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40322 ‼
📖 Read
via "National Vulnerability Database".
SysAid Help Desk before 22.1.65 allows XSS, aka FR# 66542 and 65579.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40324 ‼
📖 Read
via "National Vulnerability Database".
SysAid Help Desk before 22.1.65 allows XSS via the Linked SRs field, aka FR# 67258.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37794 ‼
📖 Read
via "National Vulnerability Database".
In Library Management System 1.0 the /card/in-card.php file id_no parameters are vulnerable to SQL injection.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36254 ‼
📖 Read
via "National Vulnerability Database".
Multiple persistent cross-site scripting (XSS) vulnerabilities in index.php in tramyardg Hotel Management System 1.0 allow remote attackers to inject arbitrary web script or HTML via multiple parameters such as "fullname".📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37796 ‼
📖 Read
via "National Vulnerability Database".
In Simple Online Book Store System 1.0 in /admin_book.php the Title, Author, and Description parameters are vulnerable to Cross Site Scripting(XSS).📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36257 ‼
📖 Read
via "National Vulnerability Database".
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "users", "pass", etc.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36259 ‼
📖 Read
via "National Vulnerability Database".
A SQL injection vulnerability in ConnectionFactory.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "username", "password", etc.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36258 ‼
📖 Read
via "National Vulnerability Database".
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".📖 Read
via "National Vulnerability Database".