2242 matches found
Microsoft Windows Push Notifications Elevation of Privilege Vulnerability
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates.Microsoft Windows Push Notifications suffers from an elevation of privilege vulnerability. The vulnerability stems from improper handling of...
CVE-2022-29125
Windows Push Notifications Apps Elevation of Privilege Vulnerability...
CVE-2022-29125
Windows Push Notifications Apps Elevation of Privilege Vulnerability...
CVE-2022-29125
Windows Push Notifications Apps Elevation of Privilege Vulnerability...
Privilege escalation
Windows Push Notifications Apps Elevation of Privilege Vulnerability...
CVE-2022-29125
Technical details (affected product/version, root cause, exploit info, or patch specifics) are not provided in the connected documents for CVE-2022-29125. Monitor for updates.
CVE-2022-29125 Windows Push Notifications Apps Elevation of Privilege Vulnerability
...
CVE-2022-29125 Windows Push Notifications Apps Elevation of Privilege Vulnerability
...
kernel: mptcp: fix deadlock in __mptcp_push_pending()
A vulnerability was found in the Linux kernel's mptcp component in the mptcppushpending function, where a deadlock can occur when calling mptcpflushjoinlist with the subflow socket lock held. This happens if the synchronization function mptcpsockoptsyncall is invoked, causing the system to hang d...
kernel: mptcp: fix deadlock in __mptcp_push_pending()
A vulnerability was found in the Linux kernel's mptcp component in the mptcppushpending function, where a deadlock can occur when calling mptcpflushjoinlist with the subflow socket lock held. This happens if the synchronization function mptcpsockoptsyncall is invoked, causing the system to hang d...
Windows Push Notifications Apps Elevation of Privilege Vulnerability
...
Microsoft Windows Push Notifications 竞争条件问题漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates.Microsoft Windows Push Notifications suffers from an elevation of privilege vulnerability. The vulnerability stems from improper handling of...
The vulnerability of the `php_wddx_push_element` function in the PHP programming language allows a hacker to trigger a service failure.
The vulnerability of the phpwddxpushelement function ext/wddx/wddx.c in the PHP programming language is caused by buffer overflows. Exploiting this vulnerability can allow an attacker to cause a service failure due to an incorrect logical element in an XML document...
PT-2022-2528 · Microsoft · Windows Push Notifications Apps +1
Name of the Vulnerable Software and Affected Versions: Windows Push Notifications Apps affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in Windows Push Notifications Apps, which is caused by synchronization errors when using a shared...
SharkBot Banking Trojan Resurfaces On Google Play Store Hidden Behind 7 New Apps
As many as seven malicious Android apps discovered on the Google Play Store masqueraded as antivirus solutions to deploy a banking trojan called SharkBot. "SharkBot steals credentials and banking information," Check Point researchers Alex Shamshur and Raman Ladutska said in a report shared with T...
PT-2022-4326 · Linux +7 · Linux Kernel +7
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to the fixed version Description: The issue is related to a NULL pointer dereference in the KVM subsystem of the Linux kernel, specifically in the kvm dirty ring push function. This flaw can be exploited by an...
CVE-2022-23974 Pinot segment push endpoint has a vulnerability in unprotected environments
In 0.9.3 or older versions of Apache Pinot segment upload path allowed segment directories to be imported into pinot tables. In pinot installations that allow open access to the controller a specially crafted request can potentially be exploited to cause disruption in pinot service. Pinot release...
PT-2022-16865 · Argo Cd · Argo Cd
Name of the Vulnerable Software and Affected Versions: Argo CD versions 0.5.0 through 2.3.1 Argo CD versions 2.0.x and earlier Description: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper...
PT-2022-2057 · Argo Cd · Argo Cd
Name of the Vulnerable Software and Affected Versions: Argo CD versions 1.0.0 and earlier Argo CD versions 0.8.0 through 0.9.x Argo CD versions 0.5.0 through 0.7.x Description: The issue is related to an improper access control bug in Argo CD, allowing a malicious user to potentially escalate the...
CVE-2022-24125
The matchmaking servers of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allow remote attackers to send arbitrary push requests to clients via a RequestSendMessageToPlayers request. For example, ability to send a push message to hundreds of thousands of machines is only restricted o...