CVE-2022-44552

The lock screen module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability...

CVE-2022-44550

The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability...

CVE-2022-44547

The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability...

PT-2025-22671 · Unknown · Quantumcloud Kbx Pro Ultimate

Name of the Vulnerable Software and Affected Versions: quantumcloud KBx Pro Ultimate versions n/a through 7.9.8 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows for Path Traversal in quantumcloud KBx P...

OPENSUSE-SU-2025:15149-1 MozillaThunderbird-128.10.2-1.1 on GA media

These are all security issues fixed in the MozillaThunderbird-128.10.2-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15150-1 audiofile-0.3.6-16.1 on GA media

These are all security issues fixed in the audiofile-0.3.6-16.1 package on the GA media of openSUSE Tumbleweed...

May 23, 2025—KB5061906 (OS Build 20348.3695) Out-of-band

May 23, 2025—KB5061906 OS Build 20348.3695 Out-of-band For information about Windows update terminology, see types of Windows updates and the monthly quality update types. To find an overview of Windows Server 2022, see its update history page.Be sure to follow @WindowsUpdate to find out when new...

The vulnerability of GRUB, a software solution for monitoring the status of industrial systems like B&R APROL, allows an intruder to influence the confidentiality, integrity, and accessibility of protected information.

The vulnerability of GRUB, a software solution for monitoring the status of B&R APROL industrial systems, lies in the absence of authentication for a critical function. Exploiting this vulnerability could allow an intruder to influence the confidentiality, integrity, and accessibility of protecte...

The vulnerability of the fromSafeSetMacFilter (/goform/setMacFilterCfg) function in the Tenda AC7 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fromSafeSetMacFilter function /goform/setMacFilterCfg in the Tenda AC7 router’s microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of t...

The vulnerability of the AdvSetMacMtuWan function in the microprogramming software for Tenda AC10 routers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the AdvSetMacMtuWan function in the Tenda AC10 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formWirelessTbl file in the microprogramming software for routers A702R, A3002R, and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formWirelessTbl file in the microprogramming software for routers A702R, A3002R, and A3002RU is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an...

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formSetLg file in the microprogramming software for routers A702R, A3002R, and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formSetLg file in the microprogramming software for routers A702R, A3002R, and A3002RU is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacke...

The vulnerability of the HTTP POST Request Handler component in the microprogramming software for TOTOLINK A3002R and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component in the microprogramming software for TOTOLINK A3002R and A3002RU devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

CVE-2022-41582

The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability...

CVE-2022-41590

Some smartphones have authentication-related including session management vulnerabilities as the setup wizard is bypassed. Successful exploitation of this vulnerability affects the smartphone availability...

CVE-2022-21504

The code in UEK6 U3 was missing an appropiate file descriptor count to be missing. This resulted in a use count error that allowed a file descriptor to a socket to be closed and freed while it was still in use by another portion of the kernel. An attack with local access can operate on the socket...

CVE-2022-41589

The DFX unwind stack module of the ArkCompiler has a vulnerability in interface calling.Successful exploitation of this vulnerability affects system services and device availability...

CVE-2022-38995

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability...

CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability...

CVE-2022-38989

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability...