BIT-DOTNET-2022-29145 .NET and Visual Studio Denial of Service Vulnerability

.NET and Visual Studio Denial of Service Vulnerability...

CVE-2022-48191

A vulnerability exists in Trend Micro Maximum Security 2022 17.7 wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowin...

Xxe

A vulnerability exists in Trend Micro Maximum Security 2022 17.7 wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowin...

CVE-2022-48191

A vulnerability exists in Trend Micro Maximum Security 2022 17.7 wherein a low-privileged user can write a known malicious executable to a specific location and in the process of removal and restoral an attacker could replace an original folder with a mount point to an arbitrary location, allowin...

CVE-2022-3066

An issue has been discovered in GitLab affecting all versions starting from 10.0 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1. It was possible for an unauthorised user to create issues in a project...

CVE-2022-34893

Trend Micro Security 2022 consumer has a link following vulnerability where an attacker with lower privileges could manipulate a mountpoint which could lead to escalation of privilege on an affected machine...

CVE-2022-37348

Trend Micro Security 2021–2022 (Consumer) is affected by an Out-Of-Bounds Read Information Disclosure vulnerability (CVE-2022-37348) that can read sensitive data from memory and may crash the system. Related entries (CVE-2022-37347) describe similar behavior. Affected product/component: Trend Mic...

CVE-2022-38302

creationtimestamp| type| source ---|---|--- 2022-09-13 02:24:42+00:00| seen| https://t.me/cibsecurity/49623...

PT-2022-22423 · Trend Micro · Trend Micro Security 2022

Name of the Vulnerable Software and Affected Versions: Trend Micro Security 2022 consumer Description: The issue is a link following vulnerability that allows an attacker with lower privileges to manipulate a mountpoint, potentially leading to escalation of privilege on an affected machine...

CVE-2022-35234

Trend Micro Security 2021 and 2022 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine...

CVE-2022-30702

Trend Micro Security 2022 and 2021 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine...

Information disclosure

Trend Micro Security 2022 and 2021 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine...

CVE-2022-30703

CVE-2022-30703 affects Trend Micro Security (Consumer) 2021 and 2022. The issue is an exposed dangerous method in the NCIE Scanner/module that can allow a local attacker to disclose sensitive information, including leaked kernel addresses, and could potentially be chained to achieve privilege esc...

CVE-2022-30702

CVE-2022-30702 affects Trend Micro Security (Consumer) 2021/2022. The confirmed issue is an Out-of-Bounds Read Information Disclosure in the NCIE Scanner module, caused by improper validation that can enable a local attacker to disclose sensitive data on an affected machine. Exploitation context ...

CVE-2022-30702

Trend Micro Security 2022 and 2021 Consumer is vulnerable to an Out-Of-Bounds Read Information Disclosure vulnerability that could allow an attacker to disclose sensitive information on an affected machine...

CVE-2022-30687

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could allow a low privileged local user to manipulate the product's secure erase feature to delete arbitrary files...

CVE-2022-30687

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could allow a low privileged local user to manipulate the product's secure erase feature to delete arbitrary files...

Spoofing

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could allow a low privileged local user to manipulate the product's secure erase feature to delete arbitrary files...