CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2022/09/18 4:1 p.m.•13 views

CVE-2022-40769

profanity through 1.60 has only four billion possible RNG initializations. Thus, attackers can recover private keys from Ethereum vanity addresses and steal cryptocurrency, as exploited in the wild in June 2022...

7.7AI score0.00658EPSS

Exploits0References3

Positive Technologies•added 2022/09/17 12:0 a.m.•1 views

PT-2022-34204 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the initialization of jump labels before the parse early param function is called. The actual impact and potential for attack have not been proven yet...

7.2AI score

OSV•added 2022/09/16 9:21 p.m.•14 views

GHSA-MV8X-668M-53FG Elrond-go has improper initialization

Impact Read only calls between contracts can generate smart contracts results. For example, if contract A calls in read only mode contract B and the called function will make changes upon the contract's B state, the state will be altered for contract B as if the call was not made in the read-only...

9.8CVSS7.8AI score0.00431EPSS

Exploits1References5

OSV•added 2022/09/16 5:41 p.m.•23 views

GHSA-XG8P-34W2-J49J linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend`

Impact What kind of vulnerability is it? Who is impacted? This vulnerability impacts all the initialization functions on the Heap and LockedHeap types, including Heap::new, Heap::init, Heap::initfromslice, and LockedHeap::new. It also affects multiple uses of the Heap::extend method. Initializati...

8.4CVSS9.1AI score0.00297EPSS

Exploits1References6

Github Security Blog•added 2022/09/16 5:41 p.m.•22 views

linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend`

9.8CVSS9AI score0.00297EPSS

Exploits1References5Affected Software1

Zero Day Initiative•added 2022/09/16 12:0 a.m.•21 views

Siemens Simcenter Femap X_T File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS5.6AI score0.00062EPSS

NVD•added 2022/09/15 4:15 p.m.•7 views

CVE-2022-40643

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

7.8CVSS0.0021EPSS

NVD•added 2022/09/15 4:15 p.m.•7 views

CVE-2022-40646

7.8CVSS0.0021EPSS

Prion•added 2022/09/15 4:15 p.m.•13 views

Design/Logic Flaw

Prion•added 2022/09/15 4:15 p.m.•13 views

Design/Logic Flaw

Prion•added 2022/09/15 4:15 p.m.•5 views

Design/Logic Flaw

Prion•added 2022/09/15 4:15 p.m.•11 views

Design/Logic Flaw

Cvelist•added 2022/09/15 3:26 p.m.•14 views

CVE-2022-40649

7.8CVSS8AI score0.0021EPSS

Cvelist•added 2022/09/15 3:26 p.m.•9 views

CVE-2022-40643

7.8CVSS8AI score0.0021EPSS

Cvelist•added 2022/09/15 3:26 p.m.•12 views

CVE-2022-40642

7.8CVSS8AI score0.0021EPSS

NVD•added 2022/09/15 2:15 p.m.•12 views

CVE-2022-2472

Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR allows a local attacker to read the contents of the memory space containing the encrypted admin password. This issue affects: EZVIZ CS-C6N-A0-1C2WFR versions prior to 5.3.0 build 220428...

7.6CVSS0.00195EPSS

OSV•added 2022/09/15 2:15 p.m.•2 views

CVE-2022-2472

5.5CVSS5.8AI score0.00195EPSS

Prion•added 2022/09/15 2:15 p.m.•12 views

Input validation

1.7CVSS5.2AI score0.00195EPSS