CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-1652

Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：51 | 回复：0
CVE-2022-1660

The affected products are vulnerable of untrusted data due to deserialization without prior authorization/authentication, which may allow an attacker to remotely execute arbitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：77 | 回复：0
CVE-2022-1661

The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：71 | 回复：0
CVE-2022-1786

A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. This fl ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：102 | 回复：0
CVE-2022-1789

With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer dere ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：195 | 回复：0
CVE-2022-1797

A malformed Class 3 common industrial protocol message with a cached connection can cause a denial-of-service condition in Rockwell Automation Logix Controllers, resulting in a major nonrecoverable fa ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：101 | 回复：0
CVE-2022-1929

An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the devcert npm package, when an attacker is able to supply arbitrary input to the certificateFor method……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：64 | 回复：0
CVE-2022-1943

A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udf_write_fi(). A local user could use this fl ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：46 | 回复：0
CVE-2022-1949

An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, but as that has progressed, can be determined that it actually is an acc ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：37 | 回复：0
CVE-2022-1968

Use After Free in GitHub repository vim/vim prior to 8.2.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：34 | 回复：0
CVE-2022-22767

Specific BD Pyxis™ products were installed with default credentials and may presently still operate with these credentials. There may be scenarios where BD Pyxis™ products are installed with the sam ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：30 | 回复：0
CVE-2022-23236

E-Series SANtricity OS Controller Software versions 11.40 through 11.70.2 store the LDAP BIND password in plaintext within a file accessible only to privileged users.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：31 | 回复：0
CVE-2022-23237

E-Series SANtricity OS Controller Software 11.x versions through 11.70.2 are vulnerable to host header injection attacks that could allow an attacker to redirect users to malicious websites.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：48 | 回复：0
CVE-2022-24238

ACEweb Online Portal 3.5.065 was discovered to contain a cross-site scripting (XSS) vulnerability via the txtNmName1 parameter in person.awp.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：37 | 回复：0
CVE-2022-24239

ACEweb Online Portal 3.5.065 was discovered to contain an unrestricted file upload vulnerability via attachments.awp.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：39 | 回复：0
CVE-2022-24240

ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：46 | 回复：0
CVE-2022-24241

ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name vulnerability via the txtFilePath parameter in attachments.awp.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：48 | 回复：0
CVE-2022-24581

ACEweb Online Portal 3.5.065 allows unauthenticated SMB hash capture via UNC. By specifying the UNC file path of an external SMB share when uploading a file, an attacker can induce the victim server t ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：78 | 回复：0
CVE-2022-24700

** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in WinAPRS 2.9.0. A buffer overflow in DIGI address processing for VHF KISS packets allows a remote attacker to cause a denial of service (daemo ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：176 | 回复：0
CVE-2022-24701

** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in WinAPRS 2.9.0. A buffer overflow in national.txt processing allows a local attacker to cause a denial of service or possibly achieve code exe ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：133 | 回复：0
CVE-2022-24702

** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in WinAPRS 2.9.0. A buffer overflow in the VHF KISS TNC component allows a remote attacker to achieve remote code execution via malicious AX.25 ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：172 | 回复：0
CVE-2022-24967

Black Rainbow NIMBUS before 3.7.0 allows stored Cross-site Scripting (XSS).……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：94 | 回复：0
CVE-2022-25237

Bonita Web 2021.2 is affected by a authentication/authorization bypass vulnerability due to an overly broad exclude pattern used in the RestAPIAuthorizationFilter. By appending ;i18ntranslation or /.. ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：62 | 回复：0
CVE-2022-26491

An issue was discovered in Pidgin before 2.14.9. A remote attacker who can spoof DNS responses can redirect a client connection to a malicious server. The client will perform TLS certificate verificat ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：53 | 回复：0
CVE-2022-26971

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. This upload can be executed without authentication.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：46 | 回复：0
CVE-2022-26972

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. The URL parameters are not correctly sanitized, leading to reflected ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：37 | 回复：0
CVE-2022-26973

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. By tweaking the license file name, the returned error messag ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：39 | 回复：0
CVE-2022-26974

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism. Lack of input sanitization in the upload mechanism leads to reflecte ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：25 | 回复：0
CVE-2022-26975

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing log files without authentication.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：23 | 回复：0
CVE-2022-26976

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization in the upload mechanism is leads ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：20 | 回复：0
CVE-2022-26977

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization of the upload mechanism is leads ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：17 | 回复：0
CVE-2022-26978

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /checklogin.jsp endpoint. The os_username parameters is not correctly sanitized, leadin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：12 | 回复：0
CVE-2022-27184

The affected product is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：8 | 回复：0
CVE-2022-27774

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is u ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：6 | 回复：0
CVE-2022-27775

An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a conne ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：6 | 回复：0
CVE-2022-27776

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：6 | 回复：0
CVE-2022-27778

A use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `--no-clobber` is used together with `--remove-on-error`.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：5 | 回复：0
CVE-2022-27779

libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided with a trailing dot.curl can be told to receive and send cookies. curl's cookie engine can bebuilt ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：5 | 回复：0
CVE-2022-27780

The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a *different* URL usingthe wrong host name when it is later retr ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：5 | 回复：0
CVE-2022-27781

libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returned about a server's certificate chain.Due to an erroneous function, a malicious server could make ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:02 | 阅读：5 | 回复：0