22 matches found
EUVD-2022-1863
Malicious code in bioql PyPI...
CVE-2022-27818
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service...
CVE-2022-27817
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality...
CVE-2022-27817
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality...
CVE-2022-27814
SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option...
Denial of service
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality...
Design/Logic Flaw
SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option...
CVE-2022-27817
CVE-2022-27817 affects the SWHKD hotkey daemon (SWHKD 1.1.5, Rust) which can consume keyboard events from unintended users. This behavior can lead to information disclosure and, more commonly, a denial of functionality. The connected documents confirm the impact but do not provide a concrete expl...
CVE-2022-27817
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality...
CVE-2022-27817
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality...
CVE-2022-27814
CVE-2022-27814 relates to SWHKD 1.1.5, where the -c option allows arbitrary file-existence tests. The connected sources confirm the vulnerable component is the SWHKD daemon and the condition is a flaw in the -c flag that enables probing for file presence, implying local, low-complexity exploitati...
CVE-2022-27814
SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option...
CVE-2022-27818
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service...
CVE-2022-27819
SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service memory exhaustion upon an attempt to parse a large or infinite file such as a block or character device...
Information disclosure
SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service memory exhaustion upon an attempt to parse a large or infinite file such as a block or character device...
CVE-2022-27818
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service...
CVE-2022-27819
SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service memory exhaustion upon an attempt to parse a large or infinite file such as a block or character device...
CVE-2022-27819
SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service memory exhaustion upon an attempt to parse a large or infinite file such as a block or character device...
CVE-2022-27816
SWHKD 1.1.5 unsafely uses the /tmp/swhks.pid pathname. There can be data loss or a denial of service...
CVE-2022-27816
SWHKD 1.1.5 unsafely uses the /tmp/swhks.pid pathname. There can be data loss or a denial of service...