2674 matches found
PT-2023-33309 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.158 Description: The issue is related to a memory leak in the raydium i2c send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
PT-2023-33138 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.12 Description: A memory leak issue was discovered in the raydium i2c send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2023-33235 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: A memory leak issue was discovered in the raydium i2c send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
GHSA-M95X-M25C-W9MP XML-RPC for PHP allows access to local files via malicious argument to the Client::send method
Abusing the $method argument of Client::send, it was possible to force the client to access local files or connect to undesired urls instead of the intended target server's url the one used in the Client constructor. This weakness only affects installations where all the following conditions appl...
XML-RPC for PHP allows access to local files via malicious argument to the Client::send method
Abusing the $method argument of Client::send, it was possible to force the client to access local files or connect to undesired urls instead of the intended target server's url the one used in the Client constructor. This weakness only affects installations where all the following conditions appl...
CVE-2022-4428
supporturi parameter in the WARP client local settings file mdm.xml lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the "Send feedback" option. An attacker with access to the local file system could use a...
PT-2023-33042 · Unknown · Xmlrpc Client
Name of the Vulnerable Software and Affected Versions: xmlrpc Client affected versions not specified Description: The issue allows an attacker to force the client to access local files or connect to undesired URLs instead of the intended target server's URL. This is possible by abusing the $metho...
PT-2023-10113 · Unknown · Vicamo Networkmanager
Name of the Vulnerable Software and Affected Versions: vicamo NetworkManager affected versions not specified Description: A problematic vulnerability has been found in vicamo NetworkManager. The issue affects the send arps function of the file src/devices/nm-device.c, leading to an unchecked retu...
PT-2023-12837 · Npm · Window-Control
Name of the Vulnerable Software and Affected Versions: window-control versions prior to 1.4.5 Description: The issue is related to Command Injection via the sendKeys function due to improper input sanitization. This affects an npm package that provides tools to manage window focus. Recommendation...
PT-2025-38050
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to inter-processor interrupts IPIs. Specifically, a NULL pointer dereference can occur in the irq data get affinity mask function when ipi send...
PT-2022-9030 · Openmrs · Openmrs Admin Ui Module
Name of the Vulnerable Software and Affected Versions: OpenMRS Admin UI Module versions up to 1.4.x Description: A problematic vulnerability has been found in the OpenMRS Admin UI Module, affecting the sendErrorMessage function of the AccountPageController.java file, part of the Account Setup...
GSD-2022-1007710 scsi: zfcp: Fix double free of FSF request when qdio send fails
scsi: zfcp: Fix double free of FSF request when qdio send fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...
PT-2022-36261 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.78 Description: A potential memory leak was identified in the fdp nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to v5.15.78,...
PT-2022-36259 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.78 Description: A potential memory leak was identified in the s3fwrn5 nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
PT-2022-36144 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.80 Description: The issue is related to a double free of FSF request when qdio send fails. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions pri...
PT-2022-36363 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 5.10.140 through 5.10.153 Description: A NULL pointer dereference issue exists in the rose send frame function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versio...
PT-2022-36522 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.265 Description: A potential memory leak was identified in the nfcmrvl i2c nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-36576 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.299 Description: A potential memory leak was identified in the nfcmrvl i2c nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-36454 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.224 Description: A potential memory leak was identified in the s3fwrn5 nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
PT-2022-28271 · Phpxmlrpc · Phpxmlrpc
Name of the Vulnerable Software and Affected Versions: phpxmlrpc affected versions not specified Description: The issue concerns argument injection via local file access in the Client:send function. This is achieved through manipulation of the $protocol argument. Recommendations: At the moment,...