CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality...

CVE-2022-41585

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting...

PT-2022-25951 · Mptcp · Mptcp

Name of the Vulnerable Software and Affected Versions: MPTCP module affected versions not specified Description: The issue is related to an out-of-bounds write vulnerability in the MPTCP module. Successful exploitation of this vulnerability may cause root privilege escalation attacks by modifying...

CVE-2022-41584

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting...

PT-2022-24640 · Unknown · Hipp Module

Name of the Vulnerable Software and Affected Versions: HIPP module affected versions not specified Description: The issue is related to the HIPP module not verifying data transferred in the kernel space. This can lead to an out-of-bounds read when successfully exploited, affecting data...

PT-2022-24642 · Unknown · Hipp Module

Name of the Vulnerable Software and Affected Versions: HIPP module affected versions not specified Description: The issue concerns a vulnerability in the HIPP module that allows bypassing the check of the data transferred in the kernel space. Successful exploitation may cause out-of-bounds access...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a bypass checking vulnerability in the HISP module for data passed in the kernel state...

PT-2022-33839 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a potential security vulnerability in the jbd2 module of the Linux Kernel. The problem arises when a journal is aborted, leading to an assertion failure. The actual...

CVE-2022-39005

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks...

CVE-2022-39009

The WLAN module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause third-party apps to affect WLAN functions...

PT-2022-11146 · Unknown · Wlan Module

Name of the Vulnerable Software and Affected Versions: WLAN module affected versions not specified Description: The implementation of the WLAN module interfaces contains an issue that may lead to information disclosure. If exploited, this could impact data confidentiality. Recommendations: At the...

PT-2022-6522 · Unknown · Wlan Module

Name of the Vulnerable Software and Affected Versions: WLAN module affected versions not specified Description: The issue is related to a vulnerability in permission verification within the WLAN module. This vulnerability can be exploited by third-party apps to affect WLAN functions. The problem ...

CVE-2022-37003

The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files...

ALPINE-CVE-2022-32215

The llhttp parser v14.20.1, v16.17.1 and v18.9.1 in the http module in Node.js does not correctly handle multi-line Transfer-Encoding headers. This can lead to HTTP Request Smuggling HRS...

CVE-2022-34742

The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality...

SUSE: Security Advisory (SUSE-SU-2022:2249-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TOTOLINK EX1200T 操作系统命令注入漏洞

TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.A command injection vulnerability exists in TOTOLINK EX1200T V4.1.2cu.5215, which originates from the file lib/cstemodules/system in the setNoticeCfg function in the file lib/cstemodules/system fails to properly...

CVE-2019-12816

Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name...

CVE-2017-16114

The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds...

HUAWEI HarmonyOS 资源管理错误漏洞

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in the HUAWEI HarmonyOS kernel that stems from a use-after-release vulnerability in a kernel module, whi...