105 matches found
EUVD-2022-32072
Malicious code in bioql PyPI...
EUVD-2022-32315
Malicious code in bioql PyPI...
CVE-2022-25832
Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to use locked Myfiles app without authentication...
CVE-2023-42132
FD Application Apr. 2022 Edition Version 9.01 and earlier improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the system may be read by an attacker...
Security Bulletin: Multiple vulnerabilities in IBM Java XML affect IBM Tivoli System Automation for Multiplatforms deferred from Oracle Apr 2022 CPU (CVE-2022-21426)
Summary A flaw in the XML component of IBM Java Technology Edition used by v4.1.0.4 to v4.1.1.0 of IBM Tivoli System Automation for Multiplatforms has been identified. These issues were disclosed as part of the IBM Java SDK updates in Apr 2022. Vulnerability Details Refer to the security bulletin...
RHEL 8 : mysql:8.0 (RHSA-2022:7119)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7119 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...
RHEL 9 : mysql (RHSA-2022:6590)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6590 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation for Multiplatforms Apr 2022 CPU (CVE-2022-21434, CVE-2022-21443, CVE-2022-21426)
Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 8 used by 4.1.0.4 to 4.1.0.7 of IBM Tivoli System Automation for Multiplatforms. These issues were disclosed as part of the IBM Java SDK updates in Apr 2022. Vulnerability Details Refer to the security bulletin...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager Apr 2022 CPU (CVE-2022-21434, CVE-2022-21443, CVE-2022-21426)
Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition used by IBM Tivoli System Automation Application Manager. These issues were disclosed as part of the IBM Java SDK updates in Apr 2022. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixe...
Oracle Application Testing Suite (Apr 2022 CPU)
The version of Oracle Application Testing Suite installed on the remote host is affected by a vulnerability as referenced in the April 2022 CPU advisory. - Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager component: Load Testing for Web Apps Apache log4ne...
Oracle MySQL Server (Apr 2022 CPU)
The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022, October 2022 and January 2023 CPU advisories. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging OpenSSL. Supported versions th...
Oracle HTTP Server (Apr 2022 CPU)
The version of Oracle HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener Apache HTTP Server. Supported versions that a...
Microsoft Edge (Chromium-Based) Elevation of Privilege Vulnerability (Apr 2022)
Microsoft Edge Chromium-Based is prone to an elevation of privilege vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Samsung SMR Licensing Issue Vulnerability (CNVD-2022-63637)
Samsung SMR is a system patch package from South Korea's Samsung Samsung. An authorization issue vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect authentication in ImsService and can be exploited to obtain IMSI without READPRIVILEGEDPHONESTATE...
Samsung SMR Input Validation Error Vulnerability (CNVD-2022-63660)
Samsung SMR is a system patch package from South Korea's Samsung Samsung. Samsung SMR Apr-2022 Release 1 is vulnerable to an input validation error, which can be exploited by attackers for out-of-bounds writes...
Samsung SMR Buffer Overflow Vulnerability (CNVD-2022-63646)
Samsung SMR is a system patch package from South Korea's Samsung Samsung. A buffer overflow vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect boundary checking in libsflvextractor's sflvdrdbufbits function. An attacker could exploit this...
Samsung SMR UWB firmware buffer overflow vulnerability
Samsung SMR is a system patch package from South Korea's Samsung Samsung. A buffer overflow vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from an incorrect boundary check in the UWB firmware. An attacker could exploit the vulnerability to write to arbitrary...
Samsung SMR Information Disclosure Vulnerability (CNVD-2022-63643)
Samsung SMR is a system patch package from South Korea's Samsung Samsung. An information disclosure vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which can be exploited by attackers to cause unauthorized access to the EFRUIMID value...
CVE-2022-27830
Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities...
CVE-2022-27827
Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities...