CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-20218

In PermissionController, there is a possible way to get and retain permissions without user's consent due to a logic error in the code. This could lead to local escalation of privilege with no add ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：984 | 回复：0
CVE-2022-20219

In multiple functions of StorageManagerService.java and UserManagerService.java, there is a possible way to leave user's directories unencrypted due to a logic error in the code. This could lead t ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：649 | 回复：0
CVE-2022-20220

In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalation of privilege with User execution privileges needed. User i ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：934 | 回复：0
CVE-2022-20221

In avrc_ctrl_pars_vendor_cmd of avrc_pars_ct.cc, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure over Bluetooth with no additi ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1039 | 回复：0
CVE-2022-20222

In read_attr_value of gatt_db.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User i ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：664 | 回复：0
CVE-2022-20223

In assertSafeToStartCustomActivity of AppRestrictionsFragment.java, there is a possible way to start a phone call without permissions due to a confused deputy. This could lead to local escalation of p ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：665 | 回复：0
CVE-2022-20224

In AT_SKIP_REST of bta_hf_client_at.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure in the Bluetooth stack with no additio ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：589 | 回复：0
CVE-2022-20225

In getSubscriptionProperty of SubscriptionController.java, there is a possible read of a sensitive identifier due to a missing permission check. This could lead to local information disclosure with no ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：580 | 回复：0
CVE-2022-20226

In finishDrawingWindow of WindowManagerService.java, there is a possible tapjacking due to improper input validation. This could lead to local escalation of privilege with User execution privileges ne ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：889 | 回复：0
CVE-2022-20227

In USB driver, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with User execution privileges needed. User interaction is not need ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：581 | 回复：0
CVE-2022-20228

In various functions of C2DmaBufAllocator.cpp, there is a possible memory corruption due to a use after free. This could lead to remote information disclosure with no additional execution privileges n ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1045 | 回复：0
CVE-2022-20229

In bta_hf_client_handle_cind_list_item of bta_hf_client_at.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execut ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：842 | 回复：0
CVE-2022-20230

In choosePrivateKeyAlias of KeyChain.java, there is a possible access to the user's certificate due to improper input validation. This could lead to local information disclosure with no additional ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：685 | 回复：0
CVE-2022-20234

In Car Settings app, the NotificationAccessConfirmationActivity is exported. In NotificationAccessConfirmationActivity, it gets both 'mComponentName' and 'pkgTitle' from user.An unpriv ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：667 | 回复：0
CVE-2022-20236

A drm driver have oob problem, could cause the system crash or EOPProduct: AndroidVersions: Android SoCAndroid ID: A-233124709……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：661 | 回复：0
CVE-2022-20238

'remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma-vm_page_prot' can also be controlled by userspace, so userspace ma ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：761 | 回复：0
CVE-2022-22982

The vCenter Server contains a server-side request forgery (SSRF) vulnerability. A malicious actor with network access to 443 on the vCenter Server may exploit this issue by accessing a URL request out ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1019 | 回复：0
CVE-2022-2380

The Linux kernel was found vulnerable out of bounds memory access in the drivers/video/fbdev/sm712fb.c:smtcfb_read() function. The vulnerability could result in local attackers being able to crash the ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：853 | 回复：0
CVE-2020-21967

File upload vulnerability in the Catalog feature in Prestashop 1.7.6.7 allows remote attackers to run arbitrary code via the add new file page.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：984 | 回复：0
CVE-2022-32308

Cross Site Scripting (XSS) vulnerability in uBlock Origin extension before 1.41.1 allows remote attackers to run arbitrary code via a spoofed 'MessageSender.url' to the browser renderer proces ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：869 | 回复：0
CVE-2022-31145

FlyteAdmin is the control plane for Flyte responsible for managing entities and administering workflow executions. In versions 1.1.30 and prior, authenticated users using an external identity provider ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：604 | 回复：0
CVE-2022-32114

An unrestricted file upload vulnerability in the Add New Assets function of Strapi v4.1.12 allows attackers to execute arbitrary code via a crafted file.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：803 | 回复：0
CVE-2022-32117

Jerryscript v2.4.0 was discovered to contain a stack buffer overflow via the function jerryx_print_unhandled_exception in /util/print.c.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：702 | 回复：0
CVE-2022-34753

A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote root exploit when the command is compromised. ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：885 | 回复：0
CVE-2022-34754

A CWE-269: Improper Privilege Management vulnerability exists that could allow elevated functionality when guessing credentials. Affected Products: Acti9 PowerTag Link C (A9XELC10-A) (V1.7.5 and prior ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1402 | 回复：0
CVE-2022-34756

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution or the crash of HTTPs stack which is used for the device Web HMI. Affected Product ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1517 | 回复：0
CVE-2022-34757

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists where weak cipher suites can be used for the SSH connection between Easergy Pro software and the device, which may allo ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：994 | 回复：0
CVE-2022-34758

A CWE-20: Improper Input Validation vulnerability exists that could cause the device watchdog function to be disabled if the attacker had access to privileged user credentials. Affected Products: Ease ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：505 | 回复：0
CVE-2022-34759

A CWE-787: Out-of-bounds Write vulnerability exists that could cause a denial of service of the webserver due to improper parsing of the HTTP Headers. Affected Products: X80 advanced RTU Communication ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：461 | 回复：0
CVE-2022-34760

A CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability exists that could cause a denial of service of the webserver due to improper handling of the cookies. Affected P ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：939 | 回复：0
CVE-2022-34761

A CWE-476: NULL Pointer Dereference vulnerability exists that could cause a denial of service of the webserver when parsing JSON content type. Affected Products: X80 advanced RTU Communication Module ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：535 | 回复：0
CVE-2022-34762

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause unauthorized firmware image loading when unsigned images are adde ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：864 | 回复：0
CVE-2022-34763

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause loading of unauthorized firmware images due to improper verification of the firmware signature. Affected ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：505 | 回复：0
CVE-2022-34764

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause denial of service when parsing the URL. Affected Products: X80 advanced RTU Com ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：531 | 回复：0
CVE-2022-34765

A CWE-73: External Control of File Name or Path vulnerability exists that could cause loading of unauthorized firmware images when user-controlled data is written to the file path. Affected Products: ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：2322 | 回复：0
CVE-2022-35857

kvf-admin through 2022-02-12 allows remote attackers to execute arbitrary code because deserialization is mishandled. The rememberMe parameter is encrypted with a hardcoded key from the com.kalvin.kvf ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：600 | 回复：0
CVE-2017-20129

A vulnerability was found in LogoStore. It has been classified as critical. Affected is an unknown function of the file /LogoStore/search.php. The manipulation of the argument query with the input tes ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1061 | 回复：0
CVE-2022-25800

Best Practical RT for Incident Response (RTIR) before 4.0.3 and 5.x before 5.0.3 allows SSRF via the whois lookup tool.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：650 | 回复：0
CVE-2022-25801

Best Practical RT for Incident Response (RTIR) before 4.0.3 and 5.x before 5.0.3 allows SSRF via Scripted Action tools.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：633 | 回复：0
CVE-2022-25802

Best Practical Request Tracker (RT) before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:15 | 阅读：1123 | 回复：0