CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-34285

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing PCB fi ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1501 | 回复：0
CVE-2022-34286

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：572 | 回复：0
CVE-2022-34287

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application contains a stack corruption vulnerability while parsing PCB files. An attacker could leverage ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1386 | 回复：0
CVE-2022-34288

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing PCB fi ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：625 | 回复：0
CVE-2022-34289

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：856 | 回复：0
CVE-2022-34290

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application contains a stack corruption vulnerability while parsing PCB files. An attacker could leverage ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：885 | 回复：0
CVE-2022-34291

A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). The affected application contains a stack corruption vulnerability while parsing PCB files. An attacker could leverage ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：616 | 回复：0
CVE-2022-34464

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM GridEdge Essential Intel (All versions V2.7.3), SICAM GridEdge Essential with GDS ARM (All versions), SICAM G ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：633 | 回复：0
CVE-2022-34465

A vulnerability has been identified in Parasolid V33.1 (All versions), Parasolid V34.0 (All versions V34.0.250), Parasolid V34.1 (All versions V34.1.233), Simcenter Femap (All versions). The affecte ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：631 | 回复：0
CVE-2022-34466

A vulnerability has been identified in Mendix Applications using Mendix 9 (All versions = V9.11 V9.15), Mendix Applications using Mendix 9 (V9.12) (All versions V9.12.3). An expression injection vul ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：651 | 回复：0
CVE-2022-34467

A vulnerability has been identified in Mendix Excel Importer Module (Mendix 8 compatible) (All versions V9.2.2), Mendix Excel Importer Module (Mendix 9 compatible) (All versions V10.1.2). The affect ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：750 | 回复：0
CVE-2022-34663

A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions), RUGGEDCOM ROS M2200 (All versions), RUGGEDCOM ROS M969 (All versions), RUGGEDCOM ROS RMC (All versions), RUGGEDCOM ROS RMC20 ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：718 | 回复：0
CVE-2022-34748

A vulnerability has been identified in Simcenter Femap (All versions V2022.2). The affected application contains an out of bounds write past the end of an allocated structure while parsing specially ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：680 | 回复：0
CVE-2022-34819

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CP 1243-7 LTE EU (All versions), SIMATIC CP 1243-7 LTE US (All versions), SIMATIC ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：711 | 回复：0
CVE-2022-34820

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CP 1243-7 LTE EU (All versions), SIMATIC CP 1243-7 LTE US (All versions), SIMATIC ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：685 | 回复：0
CVE-2022-34821

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CP 1243-7 LTE EU (All versions), SIMATIC CP 1243-7 LTE US (All versions), SIMATIC ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：844 | 回复：0
CVE-2021-36665

An issue was discovered in Druva 6.9.0 for macOS, allows attackers to gain escalated local privileges via the inSyncUpgradeDaemon.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1529 | 回复：0
CVE-2021-36666

An issue was discovered in Druva 6.9.0 for MacOS, allows attackers to gain escalated local privileges via the inSyncDecommission.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1498 | 回复：0
CVE-2021-36667

Command injection vulnerability in Druva inSync 6.9.0 for MacOS, allows attackers to execute arbitrary commands via crafted payload to the local HTTP server due to un-sanitized call to the python os.s ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1432 | 回复：0
CVE-2021-36668

URL injection in Driva inSync 6.9.0 for MacOS, allows attackers to force a visit to an arbitrary url via the port parameter to the Electron App.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1534 | 回复：0
CVE-2021-38289

An issue has been discovered in Novastar-VNNOX-iCare Novaicare 7.16.0 that gives attacker privilege escalation and allows attackers to view corporate information and SMTP server details, delete users, ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：862 | 回复：0
CVE-2021-39999

There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to i ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1024 | 回复：0
CVE-2021-40012

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：695 | 回复：0
CVE-2021-40013

Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect integrity.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：675 | 回复：0
CVE-2021-40016

Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect confidentiality.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：831 | 回复：0
CVE-2021-41396

Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module, in which a heap-based buffer overflow ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：630 | 回复：0
CVE-2021-46741

The basic framework and setting module have defects, which were introduced during the design. Successful exploitation of this vulnerability may affect system integrity.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：611 | 回复：0
CVE-2022-2366

Incorrect default configuration for trusted IP header in Mattermost version 6.7.0 and earlier allows attacker to bypass some of the rate limitations in place or use manipulated IPs for audit logging v ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：895 | 回复：0
CVE-2022-30750

Improper access control vulnerability in updateLastConnectedClientInfo function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：982 | 回复：0
CVE-2022-30751

Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using W ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：911 | 回复：0
CVE-2022-30752

Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using W ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1533 | 回复：0
CVE-2022-30753

Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1 allows local attackers to get the device ID without permission.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：712 | 回复：0
CVE-2022-30754

Implicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of AppLinker.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：658 | 回复：0
CVE-2022-30755

Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker to bypass password confirm activity by hijacking the implicit intent.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：1996 | 回复：0
CVE-2022-30756

Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with privilege of Finder.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：768 | 回复：0
CVE-2022-30757

Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain CID without ACCESS_FINE_LOCATION permission.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：796 | 回复：0
CVE-2022-30758

Implicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to access some protected information with privilege of Finder.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：626 | 回复：0
CVE-2022-31904

EGT-Kommunikationstechnik UG Mediacenter before v2.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Online_Update.php.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：633 | 回复：0
CVE-2022-32951

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：516 | 回复：0
CVE-2022-33173

An algorithm-downgrade issue was discovered in Couchbase Server before 7.0.4. Analytics Remote Links may temporarily downgrade to non-TLS connection to determine the TLS port number, using SCRAM-SHA i ...……

作者：菜鸟教程小白 | 时间：2022-7-29 17:12 | 阅读：455 | 回复：0