10 matches found
CVE-2022-36010
This library allows strings to be parsed as functions and stored as a specialized component, JsonFunctionValue. To do this, Javascript's eval function is used to execute strings that begin with "function" as Javascript. This unfortunately could allow arbitrary code to be executed if it exists as ...
SUSE CVE-2019-2875
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...
PT-2022-35966 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns an invalid length check when fetching device IDs. This problem was introduced in version v5.3 and is fixed in Linux Kernel version v6.0.10. The actual impact and attack...
PT-2022-35983 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns a potential null pointer dereference in the sparx stats init and sparx5 start functions. The actual impact and attack plausibility have not yet been proven. Recommendation...
PT-2022-35969 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue is related to a possible memory leak in the iio sysfs trig init function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35995 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v6.0.8 through v6.0.10 Description: The issue concerns a misuse of put device in the mISDN register device function. This problem was introduced in version v6.0.8 and fixed in version v6.0.10. The actual impact and attac...
PT-2022-35997 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns the mctp i2c, where unused or invalid keys are counted for flow release. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2020-8661 · Qnap Systems · Photo Station
Name of the Vulnerable Software and Affected Versions: QNAP Systems Inc. Photo Station versions prior to 5.7.11 QNAP Systems Inc. Photo Station versions prior to 6.0.10 Description: The issue is a cross-site scripting vulnerability that could allow remote attackers to inject malicious code if...
UBUNTU-CVE-2019-2850
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...
UBUNTU-CVE-2019-2877
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...