CVE-2022-3363 Business Logic Errors in ikus060/rdiffweb

Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7...

CVE-2022-3363

CVE-2022-3363 affects rdiffweb prior to 2.5.0a7. The issue is described as business logic errors in the GitHub repository ikus060/rdiffweb. Practical impact is reflected by the high base scores in the CVSS vectors (critical in NVD). Affected component: rdiffweb software; root cause: business logi...

CVE-2022-3363 Business Logic Errors in ikus060/rdiffweb

Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7...

CVE-2022-3363 Business Logic Errors in ikus060/rdiffweb

Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7...

Minimum balance requirement for payout

Lines of code Vulnerability details Impact Payouts from PA1D.sol cannot be made unless the balance is sufficiently high, meaning Proof of Concept In PA1D.sol the payout functions payoutEth, payoutToken and payoutTokens require that balance 10000. If this is not met the recipients cannot receive...

Duplicated / Split H -> H from 461 [1666620942709]

Judge has assessed an item in Issue 461 as High risk. The relevant finding follows: Lines of code Vulnerability details Impact In VoteEscrowDelegation contract, the writeCheckpoint internal function has major logic errors which will make the delegate external function to always revert. Proof of...

SUSE-SU-2022:3679-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2022-2519: Fixed a double free in rotateImage bsc1202968. - CVE-2022-2520: Fixed a assertion failure in rotateImage bsc1202973. - CVE-2022-2521: Fixed invalid free in TIFFClose bsc1202971. - CVE-2022-2867: Fixed out of bounds read and write i...

CVE-2022-40304

A flaw was found in libxml2. When a reference cycle is detected in the XML entity cleanup function the XML entity data can be stored in a dictionary. In this case, the dictionary becomes corrupted resulting in logic errors, including memory errors like double free...

Double Free

libxml2 is vulnerable to double free. When a reference cycle is detected in the XML entity cleanup function the XML entity data can be stored in a dictionary which may become corrupted resulting in logic errors, including memory errors like double free...

The vulnerability of the Jenkins OpenShift Deployer Plugin, related to authentication errors, allows attackers to circumvent existing security restrictions and increase their privileges.

The vulnerability of the Jenkins OpenShift Deployer Plugin is related to authentication errors. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions and gain increased privileges...

The vulnerability in the user interfaces of Google Chrome and Microsoft Edge allows attackers to carry out spear-phishing attacks.

The vulnerability of the user interfaces of Google Chrome and Microsoft Edge is related to information representation errors in the user interfaces. Exploiting this vulnerability allows a malicious actor to carry out spear-phishing attacks using a specially created web page...

Need to enter credentials multiple times via Workspace app access on MAC OS clients

The users need to enter credentials multiple times when using Workspace app to login to Gateway on MAC OS clients. Finally, the users still encounter the following error. Web access works well. MAC OS version:...

PT-2022-5263 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 19.1R3-S9 Junos OS versions 19.2 prior to 19.2R3-S6 Junos OS versions 19.3 prior to 19.3R3-S7 Junos OS versions 19.4 prior to 19.4R2-S7, 19.4R3-S8 Junos OS versions 20.1 prior to 20.1R3-S5 Junos OS versions 20.2 pri...

PT-2022-5928 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A race condition vulnerability has been found in the Linux Kernel, specifically affecting the kcm tx work function in the net/kcm/kcmsock.c file. This issue is caused by synchronizatio...

CVE-2022-38982

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked...

CVE-2022-38982

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked...

Privilege escalation

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked...

CVE-2022-38982

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked...

PT-2022-24638 · Unknown · Fingerprint Module

Name of the Vulnerable Software and Affected Versions: Fingerprint module affected versions not specified Description: The issue is related to service logic errors in the fingerprint module. Successful exploitation of this issue can lead to the phone lock being cracked. Recommendations: At the...

CVE-2022-38982

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked...