Information Exposure

mllogger is vulnerable to Information Exposure. The vulnerability is due to insufficient validation of the key argument in the streamhandler function of mllogger/server.py, which allows a remote attacker to manipulate that argument to disclose sensitive information...

EUVD-2022-27821

Malicious code in bioql PyPI...

CVE-2022-22676

An event handler validation issue in the XPC Services API was addressed by removing the service. This issue is fixed in macOS Monterey 12.2. An application may be able to delete files for which it does not have permission...

The vulnerability of the Netty network programming framework lies in improper validation of input data, which allows attackers to trigger service failures.

The vulnerability of the Netty network programming framework is related to insufficient validation of the data entered by the user in the SslHandler when using the own SSLEngine. Exploiting this vulnerability can allow a malicious actor to cause service failures...

CVE-2022-4574

An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code...

CVE-2022-22676

An event handler validation issue in the XPC Services API was addressed by removing the service. This issue is fixed in macOS Monterey 12.2. An application may be able to delete files for which it does not have permission...

CVE-2022-22676

An event handler validation issue in the XPC Services API was addressed by removing the service. This issue is fixed in macOS Monterey 12.2. An application may be able to delete files for which it does not have permission...