漏洞 - 第378页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2022-22289

Improper access control vulnerability in S Assistant prior to version 7.5 allows attacker to remotely get senstive information.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：42 | 回复：0
CVE漏洞

CVE-2022-22288

Improper authorization vulnerability in Galaxy Store prior to 4.5.36.5 allows remote app installation of the allowlist.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：30 | 回复：0
CVE漏洞

CVE-2022-22287

Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data in sandbox.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：45 | 回复：0
CVE漏洞

CVE-2022-22286

A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modify ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：45 | 回复：0
CVE漏洞

CVE-2022-22285

A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attackers to execute privileged action by hijacking and modifyi ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：36 | 回复：0
CVE漏洞

CVE-2022-22284

Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：39 | 回复：0
CVE漏洞

CVE-2022-22283

Improper session management vulnerability in Samsung Health prior to 6.20.1.005 prevents logging out from Samsung Health App.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：42 | 回复：0
CVE漏洞

CVE-2022-22272

Improper authorization in TelephonyManager prior to SMR Jan-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：35 | 回复：0
CVE漏洞

CVE-2022-22271

A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1 allows attackers to copy data from arbitrary memory.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：35 | 回复：0
CVE漏洞

CVE-2022-22270

An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：40 | 回复：0
CVE漏洞

CVE-2022-22269

Keeping sensitive data in unprotected BluetoothSettingsProvider prior to SMR Jan-2022 Release 1 allows untrusted applications to get a local Bluetooth MAC address.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：43 | 回复：0
CVE漏洞

CVE-2022-22268

Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：47 | 回复：0
CVE漏洞

CVE-2022-22267

Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 allows attackers to get running application information.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：40 | 回复：0
CVE漏洞

CVE-2022-22266

(Applicable to China models only) Unprotected WifiEvaluationService in TencentWifiSecurity application prior to SMR Jan-2022 Release 1 allows untrusted applications to get WiFi information without pro ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：47 | 回复：0
CVE漏洞

CVE-2022-22265

An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022 Release 1 allows arbitrary memory write and code execution.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：56 | 回复：0
CVE漏洞

CVE-2022-22264

Improper sanitization of incoming intent in Dressroom prior to SMR Jan-2022 Release 1 allows local attackers to read and write arbitrary files without permission.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：37 | 回复：0
CVE漏洞

CVE-2022-22263

Unprotected dynamic receiver in SecSettings prior to SMR Jan-2022 Release 1 allows untrusted applications to launch arbitrary activity.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：41 | 回复：0
CVE漏洞

CVE-2022-21823

A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control 2021.2 (10.7.30.0) that could allow an attacker with locally authenticated low privileges to obtain key inf ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：55 | 回复：0
CVE漏洞

CVE-2022-21667

soketi is an open-source WebSockets server. There is an unhandled case when reading POST requests which results in the server crashing if it could not read the body of a request. In the event that a P ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：43 | 回复：0
CVE漏洞

CVE-2022-0133

peertube is vulnerable to Improper Access Control……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：58 | 回复：0
CVE漏洞

CVE-2022-0132

peertube is vulnerable to Server-Side Request Forgery (SSRF)……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：55 | 回复：0
CVE漏洞

CVE-2021-46166

Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive information from the database by visiting the Reports page.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：70 | 回复：0
CVE漏洞

CVE-2021-46165

Zoho ManageEngine Desktop Central before 10.0.662, during startup, launches an executable file from the batch files, but this file's path might not be properly defined.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：92 | 回复：0
CVE漏洞

CVE-2021-46164

Zoho ManageEngine Desktop Central before 10.0.662 allows remote code execution by an authenticated user who has complete access to the Reports module.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：104 | 回复：0
CVE漏洞

CVE-2021-46163

Kentico Xperience 13.0.44 allows XSS via an XML document to the Media Libraries subsystem.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：254 | 回复：0
CVE漏洞

CVE-2021-46150

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Special:CheckUserLog allows CheckUser XSS because of date mishandling, as demonstrated by an XSS pay ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：130 | 回复：0
CVE漏洞

CVE-2021-46149

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：58 | 回复：0
CVE漏洞

CVE-2021-46148

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Some unprivileged users can view confidential information (e.g., IP addresses and User-Agent headers ...……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：53 | 回复：0
CVE漏洞

CVE-2021-46147

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. MassEditRegex allows CSRF.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：35 | 回复：0
CVE漏洞

CVE-2021-46146

An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：42 | 回复：0
CVE漏洞

CVE-2021-46060

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：43 | 回复：0
CVE漏洞

CVE-2021-46059

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：50 | 回复：0
CVE漏洞

CVE-2021-46058

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：41 | 回复：0
CVE漏洞

CVE-2021-46055

A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：43 | 回复：0
CVE漏洞

CVE-2021-46054

A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：56 | 回复：0
CVE漏洞

CVE-2021-46053

A Denial of Service vulnerability exists in Binaryen 103. The program terminates with signal SIGKILL.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：77 | 回复：0
CVE漏洞

CVE-2021-46052

A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::Tuple::validate.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：202 | 回复：0
CVE漏洞

CVE-2021-46051

A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the Media_IsSelfContained function, which could cause a Denial of Service. .……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：64 | 回复：0
CVE漏洞

CVE-2021-46050

A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：46 | 回复：0
CVE漏洞

CVE-2021-46049

A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the gf_fileio_check function, which could cause a Denial of Service.……

作者：菜鸟教程小白 | 时间：2022-6-22 22:00 | 阅读：50 | 回复：0