Lucene search
+L

32 matches found

osv
osv
added 2 days ago2 views

ROOT-OS-UBUNTU-2204-CVE-2022-49766 CVE-2022-49766 in rootio-linux - Patched by Root

Root has patched CVE-2022-49766 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS5.4AI score0.0014EPSS
Exploits0
osv
osv
added 2 days ago4 views

ROOT-OS-DEBIAN-11-CVE-2022-49766 CVE-2022-49766 in rootio-linux - Patched by Root

Root has patched CVE-2022-49766 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS5.4AI score0.0014EPSS
Exploits0
nvd
nvd
added 2026/06/15 9:17 p.m.11 views

CVE-2026-49766

Subscriber Arbitrary File Deletion in WP User Manager = 2.9.16 versions...

9.9CVSS0.00506EPSS
Exploits0References1
circl
circl
added 2026/06/14 1:16 p.m.12 views

CVE-2026-49766

creationtimestamp| type| source ---|---|--- 2026-06-14 13:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3moau3nmx7b2y 2026-06-15 21:52:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moebgpamvg2e 2026-06-16 05:01:09+00:00| seen|...

9.9CVSS4.9AI score0.00506EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/14 12:0 a.m.12 views

PT-2026-49142

Name of the Vulnerable Software and Affected Versions WP User Manager versions prior to 2.9.17 Description A flaw allows a user with Subscriber privileges to perform arbitrary file deletion. Recommendations Update to a version newer than 2.9.16...

9.9CVSS5.4AI score0.00506EPSS
Exploits0References3
ibm
ibm
added 2026/04/01 10:8 a.m.3 views

Security Bulletin: IBM Cloud Pak for Data System (CPDS 1.0) is affected by multiple vulnerabilities due to Werkzeug

Summary Werkzeug is used by IBM Cloud Pak for Data System 1.0 as a WSGI web application library. Multiple vulnerabilities affect Werkzeug. CVE-2024-49767 involves a resource exhaustion vulnerability in the multipart/form-data parser where a specifically crafted form submission can cause the parse...

7.5CVSS7.2AI score0.01102EPSS
Exploits0Affected Software1
circl
circl
added 2025/12/03 2:14 p.m.4 views

CVE-2022-49766

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

5.5CVSS6.1AI score0.0014EPSS
Exploits0References2
nessus
nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-49766

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netlink: Bounds-check struct nlmsgerr creation In preparation for FORTIFYSOURCE doing bounds-check on memcpy, switch from nlmsgput to nlmsgput, and explain the...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References4
ibm
ibm
added 2025/07/29 8:50 p.m.7 views

Security Bulletin: IBM Storage Ceph is vulnerable to Path Traversal and Uncontrolled Resource Consumption in Werkzeug (CVE-2024-49766, CVE-2024-49767)

Summary Werkzeug is used by IBM Storage Ceph for the Web Server Gateway Interface. CVE-2024-49766 CVE-2024-49767This bulletin identifies the steps to take to address the vulnerability in IBM Storage Ceph. Vulnerability Details CVEID:CVE-2024-49766 DESCRIPTION: Werkzeug is a Web Server Gateway...

7.5CVSS6.7AI score0.01102EPSS
Exploits0Affected Software1
nvd
nvd
added 2025/05/01 3:15 p.m.10 views

CVE-2022-49766

In the Linux kernel, the following vulnerability has been resolved: netlink: Bounds-check struct nlmsgerr creation In preparation for FORTIFYSOURCE doing bounds-check on memcpy, switch from nlmsgput to nlmsgput, and explain the bounds check for dealing with the memcpy across a composite flexible...

5.5CVSS0.0014EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2025/05/01 3:15 p.m.4 views

CVE-2022-49766

In the Linux kernel, the following vulnerability has been resolved: netlink: Bounds-check struct nlmsgerr creation In preparation for FORTIFYSOURCE doing bounds-check on memcpy, switch from nlmsgput to nlmsgput, and explain the bounds check for dealing with the memcpy across a composite flexible...

5.5CVSS5.9AI score0.0014EPSS
Exploits0References4
cve
cve
added 2025/05/01 2:9 p.m.72 views

CVE-2022-49766

The CVE-2022-49766 entry concerns the Linux kernel netlink path: it fixes a bounds-check issue in the creation of struct nlmsgerr. The underlying cause was related to a memcpy across a composite flexible array struct, which is mitigated by switching from __nlmsg_put to nlmsg_put() and explaining ...

5.5CVSS6.6AI score0.0014EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2025/05/01 2:9 p.m.19 views

CVE-2022-49766 netlink: Bounds-check struct nlmsgerr creation

In the Linux kernel, the following vulnerability has been resolved: netlink: Bounds-check struct nlmsgerr creation In preparation for FORTIFYSOURCE doing bounds-check on memcpy, switch from nlmsgput to nlmsgput, and explain the bounds check for dealing with the memcpy across a composite flexible...

0.0014EPSS
Exploits0References2
debiancve
debiancve
added 2025/05/01 2:9 p.m.7 views

CVE-2022-49766

In the Linux kernel, the following vulnerability has been resolved: netlink: Bounds-check struct nlmsgerr creation In preparation for FORTIFYSOURCE doing bounds-check on memcpy, switch from nlmsgput to nlmsgput, and explain the bounds check for dealing with the memcpy across a composite flexible...

5.5CVSS5.4AI score0.0014EPSS
Exploits0
ibm
ibm
added 2025/04/15 2:50 a.m.47 views

Security Bulletin: Denial of service, directory traversal, and other vulnerabilities might affect IBM Storage Defender – Resiliency Service

Summary IBM Storage Defender – Resiliency Service is vulnerable to denial of service, directory traversal, and others. The vulnerabilities have been addressed. CVE-2024-49767, CVE-2024-49766, CVE-2024-39614, CVE-2024-38875, CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, CVE-2024-47119,...

9.1CVSS8.9AI score0.28637EPSS
Exploits7Affected Software1
ibm
ibm
added 2025/02/27 3:31 a.m.18 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to werkzeug-3.0.4-py3-none-any.whl CVE-2024-49766

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to werkzeug-3.0.4-py3-none-any.whl CVE-2024-49766. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-49766 DESCRIPTION: Werkzeug is a Web Server Gateway Interface w...

7.5CVSS7.3AI score0.01102EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/02/05 9:48 a.m.31 views

Security Bulletin: IBM Maximo Application Suite uses werkzeug-3.0.4-py3-none-any.whl, cookie-0.4.1.tgz and cross-spawn-7.0.3.tgz which is vulnerable to CVE-2024-49767, CVE-2024-49766, CVE-2024-47764 and CVE-2024-21538

Summary IBM Maximo Application Suite uses werkzeug-3.0.4-py3-none-any.whl, cookie-0.4.1.tgz and cross-spawn-7.0.3.tgz which is vulnerable to CVE-2024-49767, CVE-2024-49766, CVE-2024-47764 and CVE-2024-21538. This bulletin contains information regarding the vulnerability and its fixture...

8.7CVSS6.8AI score0.01102EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/01/28 10:8 p.m.22 views

Security Bulletin: IBM Maximo Application Suite - AI Broker Component component uses werkzeug-3.0.3-py3-none-any.whl which is vulnerable to this CVE-2024-49766 and CVE-2024-49767

Summary Security Bulletin: IBM Maximo Application Suite - AI Broker Component component uses werkzeug-3.0.3-py3-none-any.whl which is vulnerable to this CVE-2024-49766 and CVE-2024-49767. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

7.5CVSS7.2AI score0.01102EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/01/28 10:8 p.m.20 views

Security Bulletin: IBM Maximo Application Suite - Predict Component component uses werkzeug-3.0.4-py3-none-any.whl which is vulnerable to this CVE-2024-49767 and CVE-2024-49766

Summary Security Bulletin: IBM Maximo Application Suite - Predict Component component uses werkzeug-3.0.4-py3-none-any.whl which is vulnerable to this CVE-2024-49767 and CVE-2024-49766. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

7.5CVSS7.2AI score0.01102EPSS
Exploits0Affected Software1
ibm
ibm
added 2024/12/04 9:59 p.m.19 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Werkzeug

Summary Multiple vulnerabilities in Werkzeug used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2024-49766 DESCRIPTION: Werkzeug is a Web Server Gateway Interface web application library. On Python = 3.11, or not using Windows, are not vulnerable. Werkzeug versi...

7.5CVSS6.4AI score0.01102EPSS
Exploits0Affected Software1
Rows per page
Query Builder