CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-23823

A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28225

Local privilege vulnerability in Yandex Browser for Windows prior to 22.3.3.684 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating symlin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28226

Local privilege vulnerability in Yandex Browser for Windows prior to 22.3.3.801 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating tempor ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28612

Improper Access Control vulnerability leading to multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Muneeb's Custom Popup Builder plugin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28839

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28840

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28841

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28842

Adobe Bridge version 12.0.1 (and earlier versions) is affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28843

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28844

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28845

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28846

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28847

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28848

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28849

Adobe Bridge version 12.0.1 (and earlier versions) is affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28850

Adobe Bridge version 12.0.1 (and earlier versions) is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability t ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-29452

Authenticated (editor or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Export All URLs plugin = 4.1 at WordPress.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-32280

Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Xakuro's XO Slider plugin = 3.3.2 at WordPress.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-32368

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_grade.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-32373

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-32374

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-21166

Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-21180

Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-21938

Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-22788

The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed. The Zoom Opener installer for Zoom C ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-24436

Observable behavioral in power management throttling for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via network access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-24946

Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC-Q Series Q03UDECPU all versions, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU all versions, Mitsubishi Ele ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-28749

Zooms On-Premise Meeting Connector MMR before version 4.8.113.20220526 fails to properly check the permissions of a Zoom meeting attendee. As a result, a threat actor in the Zooms waiting room can joi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-30647

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：4 | 回复：0
CVE-2022-30648

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by a Use-After-Free vulnerability that could result in arbitrary code execution in the context of the current user ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：4 | 回复：0
CVE-2022-30649

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the curren ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：4 | 回复：0
CVE-2022-30666

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could levera ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：4 | 回复：0
CVE-2022-30667

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could levera ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：4 | 回复：0
CVE-2022-30668

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could levera ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：5 | 回复：0
CVE-2022-30669

Adobe Illustrator versions 26.0.2 (and earlier) and 25.4.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could levera ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：7 | 回复：0
CVE-2022-32370

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_classroom.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：7 | 回复：0
CVE-2022-32371

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_teacher.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：10 | 回复：0
CVE-2022-32372

itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject.php?id=.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：8 | 回复：0
CVE-2021-41403

flatCore-CMS version 2.0.8 calls dangerous functions, causing server-side request forgery vulnerabilities.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：11 | 回复：0
CVE-2022-20203

In multiple locations of the nanopb library, there is a possible way to corrupt memory when decoding untrusted protobuf files. This could lead to local escalation of privilege,with no additional execu ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:06 | 阅读：20 | 回复：0