CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-33150

Hardware allows activation of test or debug logic at runtime for some Intel(R) Trace Hub instances which may allow an unauthenticated user to potentially enable escalation of privilege via physical ac ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：87 | 回复：0
CVE-2021-33658

atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：89 | 回复：0
CVE-2022-0001

Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：88 | 回复：0
CVE-2022-0002

Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：106 | 回复：0
CVE-2022-0853

A flaw was found in JBoss-client. The vulnerability occurs due to a memory leak on the JBoss client-side, when using UserTransaction repeatedly and leads to information leakage vulnerability.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：148 | 回复：0
CVE-2022-0907

Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：156 | 回复：0
CVE-2022-0908

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：122 | 回复：0
CVE-2022-0909

Divide By Zero error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：69 | 回复：0
CVE-2022-0921

Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：74 | 回复：0
CVE-2022-0924

Out-of-bounds Read error in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：79 | 回复：0
CVE-2022-23187

Adobe Illustrator version 26.0.3 (and earlier) is affected by a buffer overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the conte ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：79 | 回复：0
CVE-2022-23625

Wire-ios is a messaging application using the wire protocol on apple's ios platform. In versions prior to 3.95 malformed resource identifiers may render the iOS Wire Client completely unusable by ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：59 | 回复：0
CVE-2022-23730

The public API error causes for the attacker to be able to bypass API access control.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：64 | 回复：0
CVE-2022-23731

V8 javascript engine (heap vulnerability) can cause privilege escalation ,which can impact on some webOS TV models.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：48 | 回复：0
CVE-2022-23924

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：39 | 回复：0
CVE-2022-23925

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：38 | 回复：0
CVE-2022-23926

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：53 | 回复：0
CVE-2022-23927

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：40 | 回复：0
CVE-2022-23928

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：57 | 回复：0
CVE-2022-23929

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：40 | 回复：0
CVE-2022-23930

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：51 | 回复：0
CVE-2022-23931

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：36 | 回复：0
CVE-2022-23932

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：30 | 回复：0
CVE-2022-23933

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：31 | 回复：0
CVE-2022-23934

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：37 | 回复：0
CVE-2022-24090

Adobe Photoshop versions 23.1.1 (and earlier) and 22.5.5 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：43 | 回复：0
CVE-2022-24094

Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：35 | 回复：0
CVE-2022-24095

Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：49 | 回复：0
CVE-2022-24096

Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：29 | 回复：0
CVE-2022-24097

Adobe After Effects versions 22.2 (and earlier) and 18.4.4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the curren ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：25 | 回复：0
CVE-2022-25216

An absolute path traversal vulnerability allows a remote attacker to download any file on the Windows file system for which the user account running DVDFab 12 Player (recently renamed PlayerFab) has r ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：19 | 回复：0
CVE-2022-25600

Cross-Site Request Forgery (CSRF) vulnerability affecting Delete Marker Category, Delete Map, and Copy Map functions in WP Google Map plugin (versions = 4.2.3).……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：19 | 回复：0
CVE-2022-25601

Reflected Cross-Site Scripting (XSS) vulnerability affecting parameter tab discovered in Contact Form X WordPress plugin (versions = 2.4).……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：18 | 回复：0
CVE-2022-25621

UUNIVERGE WA 1020 Ver8.2.11 and prior, UNIVERGE WA 1510 Ver8.2.11 and prior, UNIVERGE WA 1511 Ver8.2.11 and prior, UNIVERGE WA 1512 Ver8.2.11 and prior, UNIVERGE WA 2020 Ver8.2.11 and prior, UNIVERGE ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：20 | 回复：0
CVE-2021-44667

A Cross Site Scripting (XSS) vulnerability exists in Nacos 2.0.3 in auth/users via the (1) pageSize and (2) pageNo parameters.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：21 | 回复：0
CVE-2022-24754

PJSIP is a free and open source multimedia communication library written in C language. In versions prior to and including 2.12 PJSIP there is a stack-buffer overflow vulnerability which only impacts ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：21 | 回复：0
CVE-2022-25839

The package url-js before 2.1.0 are vulnerable to Improper Input Validation due to improper parsing, which makes it is possible for the hostname to be spoofed. http://\\\\\\\\localhost and http://loca ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：24 | 回复：0
CVE-2022-24415

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during S ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：23 | 回复：0
CVE-2022-24416

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during S ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：24 | 回复：0
CVE-2022-24419

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during S ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：24 | 回复：0