CVE-2021-22047

In Spring Data REST versions 3.4.0 - 3.4.13, 3.5.0 - 3.5.5, and older unsupported versions, HTTP resources implemented by custom controllers using a configured base API path and a controller type-level request mapping are additionally exposed under URIs that can potentially be exposed for...

CVE-2026-22047

creationtimestamp| type| source ---|---|--- 2026-01-07 22:25:22+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbuj4cl7sb2a 2026-01-07 22:26:00+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mbuj5gnn3e2g 2026-01-07 23:10:30+00:00|...

CVE-2026-22047

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow vulnerability in SIccCalcOp::Describe at IccProfLib/IccMpeCalc.cpp. Thi...

CVE-2026-22047 iccDEV has heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow vulnerability in SIccCalcOp::Describe at IccProfLib/IccMpeCalc.cpp. Thi...

Linux Distros Unpatched Vulnerability : CVE-2025-22047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix applymicrocodeamd's return value When verifysha256digest fails,...

CVE-2025-22047 x86/microcode/AMD: Fix __apply_microcode_amd()'s return value

In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix applymicrocodeamd's return value When verifysha256digest fails, applymicrocodeamd should propagate the failure by returning false and not -1 which is promoted to true...

CVE-2025-22047

In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix applymicrocodeamd's return value When verifysha256digest fails, applymicrocodeamd should propagate the failure by returning false and not -1 which is promoted to true...

CVE-2024-22047

creationtimestamp| type| source ---|---|--- 2024-01-04 22:31:41+00:00| seen| https://t.me/ctinow/163262 2024-01-05 03:21:36+00:00| seen| https://t.me/ctinow/163354 2024-06-15 18:50:00+00:00| seen| https://t.me/cibsecurity/74432...

CVE-2024-22047 Audited Log Integrity Errors Due to Race Condition

A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to another user...

CVE-2023-22047

creationtimestamp| type| source ---|---|--- 2023-07-19 00:36:40+00:00| seen| https://t.me/cibsecurity/66974 2025-04-02 03:22:13+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/28808 2025-04-02 11:00:05+00:00| published-proof-of-concept|...

CVE-2023-22047

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Portal. Supported versions that are affected are 8.59 and 8.60. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

CVE-2023-22047

...

CVE-2023-22047

CVE-2023-22047 — Oracle PeopleSoft PeopleTools Portal (8.59, 8.60) is an unauthenticated, network-accessible vulnerability exposed via HTTP that can lead to unauthorized data access. The NUCLEI template documents an unauthenticated file-read path in the Portal component (WSRP Consumer ResourcePro...

CVE-2023-22047

...

Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits

The Microsoft Threat Intelligence Center MSTIC and the Microsoft Security Response Center MSRC found a private-sector offensive actor PSOA using multiple Windows and Adobe 0-day exploits, including one for the recently patched CVE-2022-22047, in limited and targeted attacks against European and...

CISA Urges Patch of Exploited Windows 11 Bug by Aug. 2

A Windows 11 vulnerability, part of Microsoft’s Patch Tuesday roundup of fixes, is being exploited in the wild, prompting the U.S. Cybersecurity and Infrastructure Security Agency CISA to advise patching of the elevation of privileges flaw by August 2. The recommendation is directed at federal...

Microsoft Releases Fix for Zero-Day Flaw in July 2022 Security Patch Rollout

Microsoft released its monthly round of Patch Tuesday updates to address 84 new security flaws spanning multiple product categories, counting a zero-day vulnerability that's under active attack in the wild. Of the 84 shortcomings, four are rated Critical, and 80 are rated Important in severity...

Microsoft Windows Multiple Vulnerabilities (KB5015874)

This host is missing an important security update according to Microsoft KB5015874 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft Windows Multiple Vulnerabilities (KB5015811)

This host is missing an important security update according to Microsoft KB5015811 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2022-22047

Windows Client Server Run-time Subsystem CSRSS Elevation of Privilege Vulnerability...