‼ CVE-2022-37265 ‼
📖 Read
via "National Vulnerability Database".
Prototype pollution vulnerability in stealjs steal 2.2.4 via the alias variable in babel.js.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40246 ‼
📖 Read
via "National Vulnerability Database".
A potential attacker can write one byte by arbitrary address at the time of the PEI phase (only during S3 resume boot mode) and influence the subsequent boot stages. This can lead to the mitigations bypassing, physical memory contents disclosure, discovery of any secrets from any Virtual Machines (VMs) and bypassing memory isolation and confidential computing boundaries. Additionally, an attacker can build a payload which can be injected into the SMRAM memory. This issue affects: Module name: SbPei SHA256: d827182e5f9b7a9ff0b9d3e232f7cfac43b5237e2681e11f005be627a49283a9 Module GUID: c1fbd624-27ea-40d1-aa48-94c3dc5c7e0d📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37259 ‼
📖 Read
via "National Vulnerability Database".
A Regular Expression Denial of Service (ReDoS) flaw was found in stealjs steal 2.2.4 via the string variable in babel.js.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40261 ‼
📖 Read
via "National Vulnerability Database".
An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary code in System Management Mode - an environment more privileged than operating system (OS) and completely isolated from it. Running arbitrary code in SMM additionally bypasses SMM-based SPI flash protections against modifications, which can help an attacker to install a firmware backdoor/implant into BIOS. Such a malicious firmware code in BIOS could persist across operating system re-installs. Additionally, this vulnerability potentially could be used by malicious actors to bypass security mechanisms provided by UEFI firmware (for example, Secure Boot and some types of memory isolation for hypervisors). This issue affects: Module name: OverClockSmiHandler SHA256: a204699576e1a48ce915d9d9423380c8e4c197003baf9d17e6504f0265f3039c Module GUID: 4698C2BD-A903-410E-AD1F-5EEF3A1AE422📖 Read
via "National Vulnerability Database".
‼ CVE-2022-41138 ‼
📖 Read
via "National Vulnerability Database".
In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-26696 ‼
📖 Read
via "National Vulnerability Database".
This issue was addressed with improved environment sanitization. This issue is fixed in macOS Monterey 12.4. A sandboxed process may be able to circumvent sandbox restrictions.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-28637 ‼
📖 Read
via "National Vulnerability Database".
A local Denial of Service (DoS) and local arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 (iLO 5) in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated Lights-Out 5 (iLO 5) that addresses these security vulnerabilities.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37395 ‼
📖 Read
via "National Vulnerability Database".
A Huawei device has an input verification vulnerability. Successful exploitation of this vulnerability may lead to DoS attacks.Affected product versions include:CV81-WDM FW versions 01.70.49.29.46.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35957 ‼
📖 Read
via "National Vulnerability Database".
Grafana is an open-source platform for monitoring and observability. Versions prior to 9.1.6 and 8.5.13 are vulnerable to an escalation from admin to server admin when auth proxy is used, allowing an admin to take over the server admin account and gain full control of the grafana instance. All installations should be upgraded as soon as possible. As a workaround deactivate auth proxy following the instructions at: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/auth-proxy/📖 Read
via "National Vulnerability Database".
‼ CVE-2022-39220 ‼
📖 Read
via "National Vulnerability Database".
SFTPGo is an SFTP server written in Go. Versions prior to 2.3.5 are subject to Cross-site scripting (XSS) vulnerabilities in the SFTPGo WebClient, allowing remote attackers to inject malicious code. This issue is patched in version 2.3.5. No known workarounds exist.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35089 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a heap-buffer-overflow via getTransparentColor at /home/bupt/Desktop/swftools/src/gif2swf.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35085 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a memory leak via /lib/mem.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35090 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via __asan_memcpy at /asan/asan_interceptors_memintrinsics.cpp:.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35086 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-39221 ‼
📖 Read
via "National Vulnerability Database".
McWebserver mod runs a simple HTTP server alongside the Minecraft server in seperate threads. Path traversal in McWebserver Minecraft Mod for Fabric and Quilt up to and including 0.1.2.1 and McWebserver Minecraft Mod for Forge up to and including 0.1.1 allows all files, accessible by the program, to be read by anyone via HTTP request. Version 0.2.0 with patches are released to both platforms (Fabric and Quilt, Forge). As a workaround, the McWebserver mod can be disabled by removing the file from the `mods` directory.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35088 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a heap buffer-overflow via getGifDelayTime at /home/bupt/Desktop/swftools/src/src/gif2swf.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38619 ‼
📖 Read
via "National Vulnerability Database".
SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroups/mcc_group.jsf.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35087 ‼
📖 Read
via "National Vulnerability Database".
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via MovieAddFrame at /src/gif2swf.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-41222 ‼
📖 Read
via "National Vulnerability Database".
mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40604 ‼
📖 Read
via "National Vulnerability Database".
In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowing for possible information extraction.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-41218 ‼
📖 Read
via "National Vulnerability Database".
In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.📖 Read
via "National Vulnerability Database".