Lucene search
K

17 matches found

nessus
nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: w3m (TSSA-2025:0165)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0165 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.8CVSS6.6AI score0.00441EPSS
Exploits4References5
nessus
nessus
added 2024/11/15 12:0 a.m.16 views

Fedora 37 : w3m (2022-7d2f942be2)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-7d2f942be2 advisory. - Added upstream patch to address CVE-2022-38223 2126270 Tenable has extracted the preceding description block directly from the Fedora security...

7.8CVSS7.4AI score0.00441EPSS
Exploits1References2
nessus
nessus
added 2024/04/29 12:0 a.m.23 views

Fedora 40 : w3m (2024-aeb75f8b5b)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-aeb75f8b5b advisory. - Added upstream patch to fix out-of-bounds access due to multiple backspaces to address incomplete fix for CVE-2022-38223 2222775, 2222780, 2255207...

7.8CVSS6.7AI score0.00441EPSS
Exploits4References5
openvas
openvas
added 2024/03/25 12:0 a.m.26 views

Fedora: Security Advisory (FEDORA-2024-aeb75f8b5b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.3AI score0.00441EPSS
Exploits4References8
openvas
openvas
added 2024/03/04 12:0 a.m.14 views

openSUSE: Security Advisory for w3m (SUSE-SU-2023:0065-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.00441EPSS
Exploits1References2
debian
debian
added 2023/08/24 11:48 a.m.105 views

[SECURITY] [DLA 3541-1] w3m security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3541-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler August 24, 2023 https://wiki.debian.org/LTS -...

7.8CVSS7AI score0.00441EPSS
Exploits1
osv
osv
added 2023/01/13 5:37 p.m.8 views

MGASA-2023-0006 Updated w3m packages fix security vulnerability

There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact. CVE-2022-38223...

7.8CVSS7.7AI score0.00441EPSS
Exploits1References3
mageia
mageia
added 2023/01/13 5:37 p.m.31 views

Updated w3m packages fix security vulnerability

There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact. CVE-2022-38223...

7.8CVSS2.8AI score0.00441EPSS
Exploits1References2
openvas
openvas
added 2023/01/12 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2023:0066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00441EPSS
Exploits1References4
openvas
openvas
added 2023/01/12 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2023:0065-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.00441EPSS
Exploits1References2
nessus
nessus
added 2023/01/12 12:0 a.m.20 views

SUSE SLES12 Security Update : w3m (SUSE-SU-2023:0066-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0066-1 advisory. - CVE-2022-38223: Fixed a memory safety issue when dumping crafted input to standard out bsc1202684. Tenable has extracted the preceding...

7.8CVSS7.1AI score0.00441EPSS
Exploits1References4
nessus
nessus
added 2023/01/12 12:0 a.m.29 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : w3m (SUSE-SU-2023:0065-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0065-1 advisory. - CVE-2022-38223: Fixed a memory safety issue when dumping crafted input to standard out bsc1202684...

7.8CVSS7.2AI score0.00441EPSS
Exploits1References4
osv
osv
added 2023/01/11 10:43 a.m.5 views

SUSE-SU-2023:0066-1 Security update for w3m

This update for w3m fixes the following issues: - CVE-2022-38223: Fixed a memory safety issue when dumping crafted input to standard out bsc1202684...

7.8CVSS7.6AI score0.00441EPSS
Exploits1References3
osv
osv
added 2023/01/11 10:43 a.m.3 views

SUSE-SU-2023:0065-1 Security update for w3m

This update for w3m fixes the following issues: - CVE-2022-38223: Fixed a memory safety issue when dumping crafted input to standard out bsc1202684...

7.8CVSS7.6AI score0.00441EPSS
Exploits1References3
nessus
nessus
added 2023/01/09 12:0 a.m.31 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : w3m vulnerability (USN-5796-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5796-1 advisory. It was discovered that w3m incorrectly handled certain HTML files. A remote attacker could use this issue to cause w3m to crash, resulting...

7.8CVSS7.7AI score0.00441EPSS
Exploits1References2
cve
cve
added 2022/08/15 12:0 a.m.167 views

CVE-2022-38223

There is an out-of-bounds write in checkType() in etc.c of w3m 0.5.3. A crafted HTML file can trigger this via the w3m binary, leading to Denial of Service and potentially other impacts. Connected advisories from Fedora and TencentOS Linux indicate upstream patches to fix this issue have been rel...

7.8CVSS7.8AI score0.00441EPSS
Exploits1References9Affected Software1
osv
osv
added 2022/08/15 12:0 a.m.27 views

CVE-2022-38223

There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact...

7.8CVSS7.2AI score0.00441EPSS
Exploits1References11
Rows per page
Query Builder