PT-2022-3258

Name of the Vulnerable Software and Affected Versions Dominion Voting System ImageCast X affected versions not specified Description The issue is related to the manipulation of Dominion Voting System ImageCast X devices through specially crafted election definition files, allowing for arbitrary...

SUSE-SU-2022:1861-1 Security update for cups

This update for cups fixes the following issues: - CVE-2022-26691: Fixed an authentication bypass and code execution vulnerability bsc1199474...

CVE-2021-32962 Claroty Secure Remote Access Site - Authentication Bypass Using an Alternate Path or Channel

The AGG Software Web Server version 4.0.40.1014 and prior is vulnerable to cross-site scripting, which may allow an attacker to remotely execute arbitrary code...

log4j security update

0:1.2.14-6.4.2 - Fix CVE-2022-23302, CVE-2022-23305, CVE-2022-23307, CVE-2017-5645 - Orabug: 33868008 0:1.2.14-6.4.1 - Fix remote code execution vulnerability - Resolves: CVE-2021-4104 Orabug: 33689748...

CVE-2022-1360 Cambium Networks cnMaestro OS Command Injection

The affected On-Premise cnMaestro is vulnerable to execution of code on the cnMaestro hosting server. This could allow a remote attacker to change server configuration settings...

Remote code execution

cmseasy V7.7.520211012 is affected by an arbitrary file write vulnerability. Through this vulnerability, a PHP script file is written to the website server, and accessing this file can lead to a code execution vulnerability...

CVE-2022-30055

Prime95 30.7 build 9 suffers from a Buffer Overflow vulnerability that could lead to Remote Code Execution...

Elasticsearch Logstash allows remote attackers to execute arbitrary commands

Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...

CVE-2022-25995

A command execution vulnerability exists in the console inhand functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability...

Description of the security update for Excel 2016: May 10, 2022 (KB5002196)

Description of the security update for Excel 2016: May 10, 2022 KB5002196 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-29110. Note: To apply this...

Mozilla Firefox Security Advisory (MFSA2021-10) - Windows

This host is missing a security update for Mozilla Firefox. This VT has been deprecated as a duplicate of the VT SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

SUSE-SU-2022:1511-1 Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.36.0 bsc1198290: - CVE-2022-22624: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22628: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22629: Fixed a buffer overflo...

SonicWall Global VPN Client DLL Search Order Hijacking via Application Installer

SonicWall Global VPN Client 4.10.7 installer 32-bit and 64-bit and earlier have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation via a local attacker could result in command execution in the target system. CVE: CVE-2021-20051 Last updated: Apr...

CGAL libcgal Code Execution Vulnerability (CNVD-2022-61367)

Laurent Rineau CGAL is an open source application by Laurent Rineau. It provides easy access to efficient and reliable geometric algorithms in the form of C libraries. CGAL libcgal suffers from a code execution vulnerability that stems from a specially formatted file that could lead to...

Google Android Code Execution Vulnerability (CNVD-2022-46288)

Google Android is a Linux-based open-source operating system from the US company Google...

MGASA-2022-0151 Updated libdxfrw packages fix security vulnerability

A code execution vulnerability exists in the dwgCompressor::decompress18 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. CVE-2021-21898 A code...

Laurent Rineau CGAL Code Execution Vulnerability (CNVD-2022-32771)

Laurent Rineau CGAL is a Laurent Rineau open source application. Provides access to geometric algorithms in the form of C ++ libraries. A code execution vulnerability exists in Laurent Rineau CGAL, which can be exploited by an attacker to cause out-of-scope reads and type obfuscation via a...

Laurent Rineau CGAL Code Execution Vulnerability (CNVD-2022-32768)

Laurent Rineau CGAL is a Laurent Rineau open source application. Provides access to geometric algorithms in the form of C ++ libraries. A code execution vulnerability exists in Laurent Rineau CGAL, which can be exploited by an attacker to cause out-of-scope reads and type obfuscation via a...

Laurent Rineau CGAL Code Execution Vulnerability (CNVD-2022-32607)

Laurent Rineau CGAL is a Laurent Rineau open source application. Provides access to geometric algorithms in the form of C ++ libraries. A code execution vulnerability exists in Laurent Rineau CGAL, which can be exploited by an attacker to cause out-of-scope reads and type obfuscation via a...

Laurent Rineau CGAL Code Execution Vulnerability (CNVD-2022-32605)

Laurent Rineau CGAL is a Laurent Rineau open source application. Provides access to geometric algorithms in the form of C ++ libraries. A code execution vulnerability exists in Laurent Rineau CGAL, which can be exploited by an attacker to cause out-of-scope reads and type obfuscation via a...