Lucene search
K

2315 matches found

CVE
CVE
added 2023/01/02 12:0 a.m.230 views

CVE-2022-2743

Mode C: The CVE-2022-2743 entry describes a concrete vulnerability in Google Chrome’s Window Manager on Chrome OS and Lacros, where an integer overflow can enable a remote attacker to cause an out-of-bounds memory write through crafted UI interactions. Affected software is Google Chrome on Chrome...

8.8CVSS8.5AI score0.00541EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/01/02 12:0 a.m.45 views

CVE-2022-2743

Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. Chrome security severity: High...

8.8AI score0.00541EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/01/02 12:0 a.m.38 views

CVE-2022-2743

Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. Chrome security severity: High...

8.8CVSS9.1AI score0.00541EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/12/21 12:0 a.m.32 views

SUSE SLES15 Security Update : kernel (Live Patch 26 for SLE 15 SP2) (SUSE-SU-2022:4580-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4580-1 advisory. This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a...

7.8CVSS7.1AI score0.21314EPSS
Exploits1References22
OSV
OSV
added 2022/12/20 9:4 a.m.8 views

SUSE-SU-2022:4580-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-4139: Fixed an issue...

7.8CVSS7.2AI score0.21314EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2022/12/20 12:0 a.m.30 views

SUSE SLES15: kernel-livepatch-5_14_21-150400_22-default / etc (SUSE-SU-2022:4569-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4569-1 advisory. This update for the Linux Kernel 5.14.21-15040022 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a...

7.8CVSS7.1AI score0.21314EPSS
Exploits1References22
OSV
OSV
added 2022/12/16 7:6 p.m.9 views

SUSE-SU-2022:4513-1 Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024126 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-4139: Fixed an issue...

7.8CVSS7.2AI score0.21314EPSS
Exploits1References15
NVD
NVD
added 2022/12/14 9:15 p.m.17 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS0.02367EPSS
Exploits0References7
OSV
OSV
added 2022/12/14 9:15 p.m.1 views

DEBIAN-CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS7.7AI score0.02367EPSS
Exploits0References1
OSV
OSV
added 2022/12/14 9:15 p.m.21 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS8.8AI score0.02367EPSS
Exploits0References7
Prion
Prion
added 2022/12/14 9:15 p.m.20 views

Design/Logic Flaw

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

6.5CVSS8.7AI score0.02367EPSS
Exploits0References7Affected Software3
AlpineLinux
AlpineLinux
added 2022/12/14 12:0 a.m.27 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS9.2AI score0.02367EPSS
Exploits0
CVE
CVE
added 2022/12/14 12:0 a.m.196 views

CVE-2022-46342

CVE-2022-46342 affects the X.Org X11 server (xorg-x11-server). The issue is a use-after-free in the XvdiSelectVideoNotify handler, which can lead to local privilege elevation on privileged X servers (and, per some advisories, potential remote code execution via X forwarding). Multiple advisories ...

8.8CVSS8.6AI score0.01303EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2022/12/14 12:0 a.m.23 views

CVE-2022-46342

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XvdiSelectVideoNotify request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X se...

8.8AI score0.01303EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2022/12/14 12:0 a.m.6 views

CVE-2022-46342

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XvdiSelectVideoNotify request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X se...

7AI score0.01303EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2022/12/14 12:0 a.m.32 views

CVE-2022-46342

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XvdiSelectVideoNotify request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X se...

8.8CVSS7AI score0.01303EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/12/13 9:37 a.m.6 views

kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write...

7.8CVSS6.6AI score0.00775EPSS
Exploits5References4
Veracode
Veracode
added 2022/12/11 5:25 a.m.33 views

Out-of-bounds Write

chromium is vulnerable to out of bounds write. The vulnerability exists in Lacros of the chromium browser which allows a remote attacker to perform an out of bounds memory write via a malicious HTML page, leading to arbitrary code execution on the target system...

8.8CVSS8.7AI score0.00607EPSS
Exploits0References5Affected Software1
Talos Blog
Talos Blog
added 2022/12/07 6:50 p.m.26 views

Vulnerability Spotlight: Memory corruption vulnerability discovered in PowerISO

Piotr Bania of Cisco Talos discovered this vulnerability. Cisco Talos recently discovered a memory corruption vulnerability in PowerISO. TALOS-2022-1644 CVE-2022-41992 is a memory corruption vulnerability that exists in the VHD File Format parsing functionality of PowerISO 8.3. A specially crafte...

2.3AI score0.00469EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2022/12/02 8:3 p.m.4 views

kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()

An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reservesfasize function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write...

7.8CVSS6.6AI score0.00775EPSS
Exploits5References4
Rows per page
Query Builder