Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14866 matches found

Prion
Prionadded 2022/12/14 9:15 p.m.19 views

Out-of-bounds

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XIChangeProperty request has a length-validation issues, resulting in out-of-bounds memory reads and potential information disclosure. This issue can lead to local privileges elevation on systems where the X...

6.5CVSS8.4AI score0.02685EPSS
Exploits0References8Affected Software3
RedhatCVE
RedhatCVEadded 2022/12/14 5:5 a.m.23 views

CVE-2022-46344

A vulnerability was found in X.Org. The issue occurs because the handler for the XIChangeProperty request has a length-validation issue, resulting in out-of-bounds memory reads and potential information disclosure. This flaw can lead to local privilege elevation on systems where the X server runs...

8.8CVSS8.4AI score0.02685EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2022/12/14 5:5 a.m.25 views

CVE-2022-46341

A vulnerability was found in X.Org. This issue occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code...

8.8CVSS8.6AI score0.02516EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2022/12/14 5:4 a.m.33 views

CVE-2022-46340

A vulnerability was found in X.Org. The issue occurs due to the swap handler for the XTestFakeInput request of the XTest extension, possibly corrupting the stack if GenericEvents with lengths larger than 32 bytes are sent through the XTestFakeInput request. This flaw can lead to local privilege...

8.8CVSS8.8AI score0.02484EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2022/12/14 5:4 a.m.40 views

CVE-2022-4283

A vulnerability was found in X.Org. This issue occurs because the XkbCopyNames function leaves a dangling pointer to freed memory, resulting in out-of-bounds memory access on subsequent XkbGetKbdByName requests. This flaw can lead to local privilege elevation on systems where the X server runs...

7.8CVSS8.3AI score0.00958EPSS
Exploits0References3
Cvelist
Cvelistadded 2022/12/14 12:0 a.m.21 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

9.1AI score0.02367EPSS
Exploits0References7
CNNVD
CNNVDadded 2022/12/14 12:0 a.m.3 views

X.Org X Server 缓冲区错误漏洞

X.Org X Server is an X Window System display server from the X.org Foundation. X.Org X Server suffers from a buffer error vulnerability that stems from its XIChangeProperty request handler incorrectly validating the length leading to out-of-bounds memory reads and potential information disclosure...

8.8CVSS8.6AI score0.02685EPSS
Exploits0References22
UbuntuCve
UbuntuCveadded 2022/12/14 12:0 a.m.25 views

CVE-2022-46340

A vulnerability was found in X.Org. This security flaw occurs becuase the swap handler for the XTestFakeInput request of the XTest extension may corrupt the stack if GenericEvents with lengths larger than 32 bytes are sent through a the XTestFakeInput request. This issue can lead to local...

8.8CVSS7.6AI score0.02484EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2022/12/14 12:0 a.m.28 views

CVE-2022-46341

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This issue can lead to local privileges elevation on systems where the X server is running privileged an...

8.8CVSS7.6AI score0.02516EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2022/12/14 12:0 a.m.38 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS7.1AI score0.02367EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2022/12/14 12:0 a.m.32 views

Slackware Linux 15.0 / current xorg-server Multiple Vulnerabilities (SSA:2022-348-03)

The version of xorg-server installed on the remote host is prior to 1.20.14 / 21.1.4 / 21.1.5 / 22.1.6. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-348-03 advisory. - A vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames...

8.8CVSS8.2AI score0.02685EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2022/12/14 12:0 a.m.36 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : containerd (SUSE-SU-2022:4463-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4463-1 advisory. Update to containerd v1.6.12 including Docker v20.10.21-ce bsc1206065. Also includes the followi...

7.5CVSS7AI score0.03931EPSS
Exploits0References8
CVE
CVEadded 2022/12/14 12:0 a.m.199 views

CVE-2022-46340

CVE-2022-46340 affects the X.Org X server. The issue is a stack overflow in the XTestSwapFakeInput path of the XTest extension, triggered when GenericEvents with lengths > 32 bytes are sent via XTestFakeInput. Reported consequences include local privilege elevation on privileged X servers and ...

8.8CVSS8.9AI score0.02484EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessusadded 2022/12/14 12:0 a.m.33 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : X.Org X Server vulnerabilities (USN-5778-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5778-1 advisory. Jan-Niklas Sohn discovered that X.Org X Server extensions contained multiple security issues. An attacker could possibly use thes...

8.8CVSS8.1AI score0.02685EPSS
Exploits0References7
OSV
OSVadded 2022/12/14 12:0 a.m.1 views

UBUNTU-CVE-2022-46341

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This issue can lead to local privileges elevation on systems where the X server is running privileged an...

8.8CVSS7.7AI score0.02516EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2022/12/14 12:0 a.m.27 views

CVE-2022-46341

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This issue can lead to local privileges elevation on systems where the X server is running privileged an...

8.8CVSS8.7AI score0.02516EPSS
Exploits0
Debian CVE
Debian CVEadded 2022/12/14 12:0 a.m.25 views

CVE-2022-46344

A vulnerability was found in X.Org. This security flaw occurs because the handler for the XIChangeProperty request has a length-validation issues, resulting in out-of-bounds memory reads and potential information disclosure. This issue can lead to local privileges elevation on systems where the X...

8.8CVSS8.4AI score0.02685EPSS
Exploits0
BDU FSTEC
BDU FSTECadded 2022/12/14 12:0 a.m.4 views

The vulnerability of the SSH Host Key Verification component of the Jenkins Git Client Plugin allows a perpetrator to execute a “man-in-the-middle” type attack.

The vulnerability of the SSH Host Key Verification component in the Jenkins Git Client Plugin is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute a “man-in-the-middle” attack remotely...

4.8CVSS7.5AI score0.00773EPSS
Exploits0References5Affected Software1
AlpineLinux
AlpineLinuxadded 2022/12/14 12:0 a.m.29 views

CVE-2022-4283

A vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames function left a dangling pointer to freed memory, resulting in out-of-bounds memory access on subsequent XkbGetKbdByName requests.. This issue can lead to local privileges elevation on systems where the X serve...

7.8CVSS8.7AI score0.00958EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2022/12/14 12:0 a.m.27 views

CVE-2022-46343

A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution f...

8.8CVSS9.2AI score0.02367EPSS
Exploits0
Rows per page
Query Builder