12 matches found
CVE-2022-36944
creationtimestamp| type| source ---|---|--- 2024-02-07 07:06:26+00:00| seen| https://t.me/ctinow/180546 2024-02-07 07:36:31+00:00| seen| https://t.me/ctinow/180552 2024-02-08 10:11:39+00:00| seen| https://t.me/ctinow/181255...
Oracle Primavera Gateway (October 2023 CPU)
The versions of Primavera Gateway installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the Primavera Gateway product of Oracle Construction and Engineering component: Admin JSON-java. Supported versions that are...
Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.5.0 release and security update
Red Hat AMQ Streams 2.5.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Security Bulletin: Due to use of Scala, IBM Cloud Pak for Multicloud Management Monitoring could allow a remote authenticated attacker to execute arbitrary code on the system. [CVE-2022-36944]
Summary Scala is used by IBM Cloud Pak for Multicloud Management Monitoring, to process large amounts of data smoothly and efficiently. The vulnerability has been addresssed. Vulnerability Details CVEID:CVE-2022-36944 DESCRIPTION: Scala could allow a remote authenticated attacker to execute...
Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.4.0 release and security update
Red Hat AMQ Streams 2.4.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
Security Bulletin: IBM Cloud Pak for Network Automation v2.4.3 addresses multiple security vulnerabilities
Summary IBM Cloud Pak for Network Automation v2.4.3 addresses multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2022-1304 DESCRIPTION: e2fsprogs could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read/write...
Fedora 36 : scala (2022-34acf878fb)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-34acf878fb advisory. Security fix for CVE-2022-36944. See https://github.com/scala/scala/releases/tag/v2.13.9 for other changes in scala 2.13.9. Tenable has extracted th...
Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to arbitrary code execution due to Scala (CVE-2022-36944)
Summary Scala is used by IBM Tivoli Netcool Impact as part of the Kafka data source and service components. IBM Tivoli Netcool Impact has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2022-36944 DESCRIPTION: Scala could allow a remote authenticated attacker to execute arbitrary co...
CVE-2022-36944 vulnerabilities
Vulnerabilities for packages: spark-scala-2.13...
CVE-2022-36944 vulnerabilities
Vulnerabilities for packages: spark-fips...
CVE-2022-36944
Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...
CVE-2022-36944
CVE-2022-36944 involves a Java deserialization chain in Scala 2.13.x before 2.13.9. On its own it is not directly exploitable; risk exists when an application deserializes Java objects, enabling an attacker to erase arbitrary files, make network connections, or possibly execute code (notably Func...