Lucene search
K

7654 matches found

CNVD
CNVD
added 2022/10/12 12:0 a.m.14 views

WordPress Simple File List cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Simple File List versions prior to 4.4.12 are vulnerable to cross-site request forgery, which stems...

6.5CVSS1.1AI score0.00338EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2022/10/11 7:30 a.m.6 views

ruby: buffer overflow in CGI.escape_html

A flaw was found in the ruby. This issue occurs due to improper bounds checking by a buffer overrun in CGI.escapehtml. By sending an overly long string using the sizet parameter, a remote attacker could overflow a buffer and execute arbitrary code on the system...

9.8CVSS7.9AI score0.04766EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.32 views

CVE-2022-36360

A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Affected devices load firmware updates without checking the authenticity. Furthermore the integrity of the unencrypted firmware is only verified by a non-cryptographic method. This could allow an attacker t...

7.6AI score0.00251EPSS
Exploits0References1
Code423n4
Code423n4
added 2022/10/10 12:0 a.m.6 views

The amount of an ERC1155 token should be checked.

Lines of code Vulnerability details Impact For NFT token of type ERC1155, there may be multiple tokens with the same tokenId. Therefore, when processing orders of type ERC1155, it is necessary to check not only whether the tokenId of the NFT for both buyers and sellers are matched, but also the...

6.7AI score
Exploits0
CNVD
CNVD
added 2022/10/10 12:0 a.m.42 views

Multiple MediaTek chip ril denial-of-service vulnerabilities

MediaTek Inc. is the world's fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion devices with MediaTek chips built into them available worldwide each year...

7.5CVSS2.1AI score0.00616EPSS
Exploits0References1
CNVD
CNVD
added 2022/10/10 12:0 a.m.33 views

Multiple MediaTek chip wlan local privilege elevation vulnerabilities

MediaTek Inc. is the world's fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion devices a year with MediaTek chips built into them available around the world...

6.7CVSS2.3AI score0.00092EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/07 12:0 a.m.2 views

MediaTek 芯片输入验证错误漏洞

MediaTek Inc. is the world's fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion devices with MediaTek chips built into them available worldwide each year...

7.5CVSS6.8AI score0.00616EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.62 views

SUSE SLES12: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2022:3492-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3492-1 advisory. Updated to version 2.36.8 bsc1203530: - CVE-2022-32886: Fixed a buffer overflow issue that could potentially lead to code execution...

8.8CVSS7.2AI score0.01413EPSS
Exploits0References6
Cloud Foundry
Cloud Foundry
added 2022/09/29 12:0 a.m.43 views

USN-5619-1: LibTIFF vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that LibTIFF was not properly performing the calculation of data that would eventually be used as a reference for bound-checking operations. An attacker could...

7.5CVSS7.1AI score0.02433EPSS
Exploits6Affected Software2
IBM AIX
IBM AIX
added 2022/09/28 1:38 p.m.44 views

AIX is vulnerable to denial of service due to zlib and zlibNX

IBM SECURITY ADVISORY First Issued: Wed Sep 28 13:38:50 CDT 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/zlibadvisory.asc https://aix.software.ibm.com/aix/efixes/security/zlibadvisory.asc...

7.5CVSS0.4AI score0.51733EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/09/24 12:0 a.m.72 views

SUSE SLES15: libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc (SUSE-SU-2022:3352-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3352-1 advisory. - CVE-2022-32893: Fixed processing maliciously crafted web content may lead to arbitrary code execution bsc1202807. Bugfixes: - Fixed...

8.8CVSS7.8AI score0.09785EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/09/24 12:0 a.m.54 views

SUSE SLED15: libjavascriptcoregtk-4_0-18 / libjavascriptcoregtk-4_0-18-32bit / etc (SUSE-SU-2022:3351-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3351-1 advisory. - CVE-2022-32893: Fixed several crashes and rendering issues bsc1202807. - Fixed WebKitGTK not allow to b...

8.8CVSS7.6AI score0.09785EPSS
Exploits0References5
OSV
OSV
added 2022/09/23 7:15 p.m.3 views

CVE-2022-32817

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to disclose kernel memory...

5.5CVSS6.7AI score0.00732EPSS
Exploits0References4
OSV
OSV
added 2022/09/23 7:15 p.m.0 views

CVE-2022-32799

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Monterey 12.5. A user in a privileged network position may be able to leak sensitive information...

5.9CVSS5.8AI score0.01288EPSS
Exploits0References2
OSV
OSV
added 2022/09/23 7:15 p.m.2 views

CVE-2022-32787

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. Processing maliciously crafted web content may lead to arbitrary code...

8.8CVSS6AI score0.01232EPSS
Exploits0References6
NVD
NVD
added 2022/09/23 7:15 p.m.18 views

CVE-2022-32787

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. Processing maliciously crafted web content may lead to arbitrary code...

8.8CVSS0.01232EPSS
Exploits0References6
NVD
NVD
added 2022/09/23 7:15 p.m.25 views

CVE-2022-32799

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Monterey 12.5. A user in a privileged network position may be able to leak sensitive information...

5.9CVSS0.01288EPSS
Exploits0References2
Prion
Prion
added 2022/09/23 7:15 p.m.22 views

Information disclosure

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing a maliciously crafted Postscript file may result in unexpected app termination or disclosure of process memory...

3.3CVSS7AI score0.00566EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2022/09/23 7:15 p.m.16 views

Design/Logic Flaw

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. Processing maliciously crafted web content may lead to arbitrary code...

6.8CVSS8.7AI score0.01232EPSS
Exploits0References6Affected Software6
Prion
Prion
added 2022/09/23 7:15 p.m.21 views

Design/Logic Flaw

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to disclose kernel memory...

1.9CVSS5.3AI score0.00732EPSS
Exploits0References4Affected Software5
Rows per page
Query Builder