93 matches found
EUVD-2026-4422
Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of Sensitive Information vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to information exposure...
CGA-4422-JCG3-2JVM
Bulletin has no description...
EUVD-2017-4422
Malware in sbrugna...
CVE-2025-4422
The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...
CVE-2025-4422 EfiSmiServices : EfiPcdProtocol, SMM memory corruption vulnerabilities in SMM module
The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...
CVE-2025-4422
CVE-2025-4422 describes EfiSmiServices: EfiPcdProtocol, SMM memory corruption vulnerabilities in an SMM module, identified in Lenovo-specific code. The available data state a Lenovo code base is affected; no explicit vulnerable versions or root-cause details beyond EFI SMI/PCI memory corruption a...
CVE-2025-4422 EfiSmiServices : EfiPcdProtocol, SMM memory corruption vulnerabilities in SMM module
The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...
AlmaLinux 9 : fence-agents (ALSA-2024:4422)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4422 advisory. urllib3: proxy-authorization request header is not stripped during cross-origin redirects CVE-2024-37891 Tenable has extracted the preceding description block...
RHEL 9 : fence-agents (RHSA-2024:4422)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4422 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable...
Oracle Linux 9 : fence-agents (ELSA-2024-4422)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4422 advisory. 4.10.0-62.4 - bundled urllib3: fix CVE-2024-37891 Resolves: RHEL-43956 Tenable has extracted the preceding description block directly from the Oracle Linux...
Moderate: Red Hat Security Advisory: fence-agents security update
An update for fence-agents is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...
CVE-2024-4422 Comparison Slider <= 1.0.5 - Authenticated (Subscriber+) Stored Cross-Site Scripting
The Comparison Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slider title parameter in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber access...
CVE-2024-4422 Comparison Slider <= 1.0.5 - Authenticated (Subscriber+) Stored Cross-Site Scripting
The Comparison Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slider title parameter in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber access...
CVE-2023-4422 Cross-site Scripting (XSS) - Stored in cockpit-hq/cockpit
Cross-site Scripting XSS - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.3...
CVE-2023-4422 Cross-site Scripting (XSS) - Stored in cockpit-hq/cockpit
Cross-site Scripting XSS - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.3...
CVE-2023-4422
CVE-2023-4422 affects Cockpit: a stored Cross-site Scripting (XSS) vulnerability in cockpit-hq/cockpit prior to version 2.6.3. Public sources (NVD/NVDS, OSV, GHSA, CIRCL, PT-2023-29151) describe the issue as a stored XSS that can affect users viewing stored input, with each entry reaffirming that...
CVE-2023-4422 Cross-site Scripting (XSS) - Stored in cockpit-hq/cockpit
Cross-site Scripting XSS - Stored in GitHub repository cockpit-hq/cockpit prior to 2.6.3...
CVE-2021-4422
The POST SMTP Mailer plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.20. This is due to missing or incorrect nonce validation on the handleCsvExport function. This makes it possible for unauthenticated attackers to trigger a CSV export via a...
CVE-2021-4422
The POST SMTP Mailer plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.20. This is due to missing or incorrect nonce validation on the handleCsvExport function. This makes it possible for unauthenticated attackers to trigger a CSV export via a...
CVE-2021-4422
The CVE-2021-4422 entry concerns the WordPress POST SMTP Mailer plugin (