CVE-2023-22733 Improper Output Neutralization in Log Module in shopware

Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions the log module would write out all kind of sent mails. An attacker with access to either the local system logs or a centralized logging store may have access to other users accounts. This issu...

CVE-2022-47976

The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections...

UBUNTU-CVE-2022-42254

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer nvidia.ko, where an out-of-bounds array access may lead to denial of service, data tampering, or information disclosure...

HUAWEI WS7100-20 安全漏洞

Huawei WS7100-20 is a router from Huawei China. A security vulnerability exists in the HUAWEI WS7100-20 prior to version 11.0.5.5, which stems from a denial of service vulnerability in the Wi-Fi module...

CVE-2022-46320

The kernel module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may cause memory overwriting...

CVE-2022-46321

The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality...

CVE-2022-34271

A vulnerability in import module of Apache Atlas allows an authenticated user to write to web server filesystem. This issue affects Apache Atlas versions from 0.8.4 to 2.2.0...

CVE-2022-41742

A vulnerability was found in NGINX’s module, ngxhttpmp4module. This flaw allows a local attacker to cause a worker process crash or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products built with ngxhttpmp4module...

CVE-2022-44553

The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically...

CVE-2022-44551

The iaware module has a vulnerability in thread security. Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability...

PT-2022-27238 · Hiview · Hiview

Name of the Vulnerable Software and Affected Versions: HiView module affected versions not specified Description: The HiView module has a vulnerability where it fails to filter out third-party apps when invoking the system provider. This could lead to third-party apps starting periodically if the...

CVE-2022-44554

The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal status of a module on the device...

PT-2022-27243 · Unknown · Ams Module

Name of the Vulnerable Software and Affected Versions: AMS module affected versions not specified Description: The issue is related to a serialization/deserialization mismatch in the AMS module. This could potentially lead to privilege escalation if successfully exploited. Recommendations: At the...

PT-2022-27246 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: Launcher module affected versions not specified Description: The issue concerns an Intent redirection vulnerability in the launcher module. This vulnerability can be exploited to modify launcher module data. Recommendations: At the moment,...

CVE-2021-46851

The DRM module has a vulnerability in verifying the secure memory attributes. Successful exploitation of this vulnerability may cause abnormal video playback...

CVE-2022-44556

Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability...

ASB-A-244109033

A module in camera driver do not check the data of ioctl parameter, which may cause deny of service happens...

CVE-2022-42218

Open Source SACCO Management System v1.0 vulnerable to SQL Injection via /saccoshield/manageloan.php...

CVE-2022-41576

The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices...

CVE-2022-39011

The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module...