12 matches found
CVE-2026-31915
Missing Authorization vulnerability in UX-themes Flatsome flatsome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flatsome: from n/a through = 3.19.6...
Point B Getscreen 安全漏洞
Point B Getscreen is a browser-based remote desktop software from Point B Corporation. A security vulnerability exists in Point B Getscreen version 2.19.6, which stems from an unknown function in the file getscreen.msi that can lead to the creation of temporary files with insecure permissions...
ALPINE-CVE-2022-42705
A use-after-free in respjsippubsub.c in Sangoma Asterisk 16.28, 18.14, 19.6, and certified/18.9-cert2 may allow a remote authenticated attacker to crash Asterisk denial of service by performing activity on a subscription via a reliable transport at the same time that Asterisk is also performing...
PT-2022-33283 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue is related to the shmem replace page function, which may update the page without properly updating the folio. This could potentially lead to security vulnerabilities, although the...
PT-2022-33278 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.19 through v5.19.5 Description: The issue is related to the arm64/sme in the Linux Kernel, where SVE register state is not flushed when allocating SME storage. The actual impact and attack plausibility have not yet be...
PT-2022-33294 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue concerns a locking problem in rxrpc's sendmsg. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.19.6, upda...
PT-2022-33302 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue is related to data-races around sysctl max skb frags. The actual impact and attack plausibility have not yet been proven. It was introduced in version v4.5 and fixed in Linux Kerne...
PT-2022-33277 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue is related to a potential security vulnerability in the Linux Kernel. It involves the md stop writes function. The actual impact and attack plausibility have not yet been proven...
PT-2022-33311 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue is related to the net/mlx5 module, where an irq is not disabled when locking lag lock. This could potentially lead to security vulnerabilities, although the actual impact and attac...
PT-2022-33282 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue is related to an error exit in the privcmd ioctl dm op function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...
PT-2022-21923 · Dell Emc · Dell Emc Data Protection Advisor
Name of the Vulnerable Software and Affected Versions: Dell EMC Data Protection Advisor versions 19.6 and earlier Description: The issue is a Stored Cross Site Scripting, where an attacker could potentially exploit this to store malicious HTML or JavaScript codes in a trusted application data...
kernel: Use-after-free in sound/usb/card.c:usb_audio_probe()
A flaw was found In the Linux kernel, through version 4.19.6, where a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device with zero interfaces that is mishandled in usbaudioprobe in sound/usb/card.c. An attacker could corrupt memory and possibly...