Lucene search

K

Linkit Security Vulnerabilities

cve
cve

CVE-2022-32665

In Boa, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20220026; Issue ID:...

9.8CVSS

9.3AI Score

0.003EPSS

2023-01-03 09:15 PM
16
cve
cve

CVE-2022-32664

In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege with User execution privileges needed. User interaction is needed for exploitation. Patch ID: A20220004; Issue ID:...

8.8CVSS

8.8AI Score

0.003EPSS

2023-01-03 09:15 PM
18
cve
cve

CVE-2021-30636

In MediaTek LinkIt SDK before 4.6.1, there is a possible memory corruption due to an integer overflow during mishandled memory allocation by pvPortCalloc and...

9.8CVSS

9.6AI Score

0.002EPSS

2022-01-24 01:15 AM
38
cve
cve

CVE-2015-3361

Cross-site scripting (XSS) vulnerability in the Linkit module before 7.x-2.7 and 7.x-3.x before 7.x-3.3 for Drupal, when the node search plugin is enabled, allows remote authenticated users to inject arbitrary web script or HTML via a node...

5.5AI Score

0.001EPSS

2015-04-21 04:59 PM
16
cve
cve

CVE-2012-2304

The Linkit module 7.x-2.x before 7.x-2.3 for Drupal, when using an entity access module, does not check permissions when searching for entities, which allows remote attackers to obtain sensitive information via unspecified...

6.4AI Score

0.007EPSS

2012-08-14 10:55 PM
18