CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-39801

In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：74 | 回复：0
CVE-2021-39802

In change_pte_range of mprotect.c , there is a possible way to make a shared mmap writable due to a permissions bypass. This could lead to local escalation of privilege with no additional execution pr ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：75 | 回复：0
CVE-2021-39803

In ~Impl of C2AllocatorIon.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User in ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：98 | 回复：0
CVE-2021-39804

In reinit of HeifDecoderImpl.cpp, there is a possible crash due to a missing null check. This could lead to remote persistent denial of service in the file picker with no additional execution privileg ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：112 | 回复：0
CVE-2021-39805

In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure through Bluetooth with no additional exe ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：114 | 回复：0
CVE-2021-39807

In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the Guest account due to a missing permission check. This could lead to local escalation of privilege from ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：142 | 回复：0
CVE-2021-39808

In createNotificationChannelGroup of PreferencesHelper.java, there is a possible way for a service to run in foreground without user notification due to improper input validation. This could lead to l ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：252 | 回复：0
CVE-2021-39809

In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution pri ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：144 | 回复：0
CVE-2021-39812

In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：115 | 回复：0
CVE-2021-39814

In ppmp_validate_wsm of drm_fw.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. Us ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：121 | 回复：0
CVE-2021-41004

A remote vulnerability was discovered in Aruba Instant On 1930 Switch Series version(s): Firmware below v1.0.7.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：94 | 回复：0
CVE-2021-41005

A remote vulnerability was discovered in Aruba Instant On 1930 Switch Series version(s): Firmware below v1.0.7.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：71 | 回复：0
CVE-2022-21155

A specially crafted packet sent to the Fernhill SCADA Server Version 3.77 and earlier may cause an exception, causing the server process (FHSvrService.exe) to exit.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：74 | 回复：0
CVE-2022-21168

The affected product is vulnerable due to an invalid pointer initialization, which may lead to information disclosure.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：68 | 回复：0
CVE-2022-21202

The affected product is vulnerable to an out-of-bounds read, which may result in disclosure of sensitive information.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：97 | 回复：0
CVE-2022-21214

The affected product is vulnerable to a heap-based buffer overflow, which may lead to code execution.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：83 | 回复：0
CVE-2022-21228

The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：98 | 回复：0
CVE-2022-22541

SAP BusinessObjects Business Intelligence Platform - versions 420, 430, may allow legitimate users to access information they shouldn't see through relational or OLAP connections. The main impact ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：115 | 回复：0
CVE-2022-23702

A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 Servers. The vulnerability could be locally exploited to allow an user with Administrator access to ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：231 | 回复：0
CVE-2022-23703

A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays, HPE Nimble Storage All Flash Arrays and HPE Nimble Storage Secondary Flash Arrays during update. This would pote ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：100 | 回复：0
CVE-2022-24383

The affected product is vulnerable to an out-of-bounds read, which may result in code execution……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：79 | 回复：0
CVE-2022-24812

Grafana is an open-source platform for monitoring and observability. When fine-grained access control is enabled and a client uses Grafana API Key to make requests, the permissions for that API Key ar ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：82 | 回复：0
CVE-2022-26105

SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the user i ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：61 | 回复：0
CVE-2022-26106

When a user opens a manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes tem ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：54 | 回复：0
CVE-2022-26107

When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporaril ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：48 | 回复：0
CVE-2022-26108

When a user opens a manipulated Picture Exchange (.pcx, 2d.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavai ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：52 | 回复：0
CVE-2022-26109

When a user opens a manipulated Portable Document Format (.pdf, PDFView.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes tempo ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：59 | 回复：0
CVE-2022-27139

** DISPUTED ** An arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute arbitrary code via a crafted SVG file. NOTE: Vendor states that as outlined ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：65 | 回复：0
CVE-2022-27140

An arbitrary file upload vulnerability in the file upload module of Express-Fileupload v1.3.1 allows attackers to execute arbitrary code via a crafted PHP file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：82 | 回复：0
CVE-2022-27260

An arbitrary file upload vulnerability in the file upload component of ButterCMS v1.2.8 allows attackers to execute arbitrary code via a crafted SVG file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：69 | 回复：0
CVE-2022-27261

An arbitrary file write vulnerability in Express-FileUpload v1.3.1 allows attackers to upload multiple files with the same name, causing an overwrite of files in the web application server.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：68 | 回复：0
CVE-2022-27262

An arbitrary file upload vulnerability in the file upload module of Skipper v0.9.1 allows attackers to execute arbitrary code via a crafted file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：80 | 回复：0
CVE-2022-27263

An arbitrary file upload vulnerability in the file upload module of Strapi v4.1.5 allows attackers to execute arbitrary code via a crafted file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：85 | 回复：0
CVE-2022-27654

When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unav ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：125 | 回复：0
CVE-2022-27655

When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavail ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：76 | 回复：0
CVE-2022-27657

A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run (Simple Dia ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：66 | 回复：0
CVE-2022-27667

Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management Console (CMC) - version 430, allows an attacker to access information which would otherwise be restricte ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：49 | 回复：0
CVE-2022-27669

An unauthenticated user can use functions of XML Data Archiving Service of SAP NetWeaver Application Server for Java - version 7.50, to which access should be restricted. This may result in an escalat ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：39 | 回复：0
CVE-2022-27670

SAP SQL Anywhere - version 17.0, allows an authenticated attacker to prevent legitimate users from accessing a SQL Anywhere database server by crashing the server with some queries that use indirect i ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：35 | 回复：0
CVE-2022-27671

A CSRF token visible in the URL may possibly lead to information disclosure vulnerability.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：33 | 回复：0