Six Apart Movable Type security update-CVE-2021-20837
NAME Six Apart - Movable Type Platforms Affected:Movable TypeRisk Level:highCVE Type:OS command injection DESCRIPTION CVE-2021-20837 is an OS command injection...
CVE
CVE-2021-38694
Summary: SoftVibe SARABAN for INFOMA 1.1 allows SQL Injection. Reference Links(if available): https://orangeo.tech/post/2021/12/24/First-CVEs.html https://play.google.com/store/apps/details?id=th.co.softvibe.saraban&hl=en&gl=US CVSS Score (if available) v2: /...
CVE-2021-38696
Summary: SoftVibe SARABAN for INFOMA 1.1 has Incorrect Access Control vulnerability, that allows attackers to access signature files on the...
CVE-2021-46483
Summary: Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c. Reference Links(if available): https://github.com/pcmacdon/jsish/issues/62 CVSS...
CVE-2021-46482
Summary: Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c. Reference Links(if available): https://github.com/pcmacdon/jsish/issues/66 CVSS...
CVE-2021-41550
Summary: Leostream Connection Broker 9.0.40.17 allows administrator to upload and execute Perl code. Reference Links(if available): https://leostream.com/wp-content/uploads/2018/11/Leostream_release_notes.pdf https://www.leostream.com/resource/leostream-connection-broker-9-0/ CVSS Score...
Moodle cross-site request forgery | CVE-2022-0335
NAME Moodle cross-site request forgery Platforms Affected:Moodle Moodle 3.11 Moodle Moodle 3.10 Moodle Moodle 3.9 Moodle Moodle 3.11.4 Moodle Moodle...
Apache Karaf code execution | CVE-2021-41766
NAME Apache Karaf code execution Platforms Affected:Apache Karaf 4.3.5Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Karaf could allow a remote attacker to...
Expat (aka libexpat) integer overflow | CVE-2022-23990
NAME Expat (aka libexpat) integer overflow Platforms Affected:libexpat libexpat 2.4.3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Expat (aka libexpat) could allow a remote...
ConnMan denial of service | CVE-2022-23097
NAME ConnMan denial of service Platforms Affected:ConnMan ConnMan 1.40Risk Level:9.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION ConnMan is vulnerable to a denial of...
ConnMan denial of service | CVE-2022-23096
NAME ConnMan denial of service Platforms Affected:ConnMan ConnMan 1.40Risk Level:9.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION ConnMan is vulnerable to a denial of...
Lens BoreD Agent security bypass | CVE-2022-0270
NAME Lens BoreD Agent security bypass Platforms Affected:Lens BoreD Agent 0.6.0Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Lens BoreD Agent could allow a...
Apache ShenYu code execution | CVE-2021-45029
NAME Apache ShenYu code execution Platforms Affected:Apache ShenYu 2.4.0 Apache ShenYu 2.4.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache ShenYu could allow a...
CVE-2021-30952
Summary: An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 15.2, macOS Monterey 12.1,...
CVE-2021-30953
Summary: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in tvOS 15.2, macOS Monterey 12.1,...
CVE-2021-30954
Summary: A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey...
CVE-2021-30984
Summary: A race condition was addressed with improved state handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1,...
CVE-2021-28507
Summary: An issue has recently been discovered in Arista EOS where, under certain conditions, the service ACL configured for OpenConfig...
Expat (aka libexpat) buffer overflow | CVE-2022-23852
NAME Expat (aka libexpat) buffer overflow Platforms Affected:libexpat libexpat 2.4.3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Expat (aka libexpat) could allow a remote...
CVE-2015-7547
Summary: Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU...
CVE-2022-0244
Summary: An issue has been discovered in GitLab CE/EE affecting all versions starting with 14.5. Arbitrary file read was possible...
CVE-2021-46104
Summary: An issue was discovered in webp_server_go 0.4.0. There is a directory traversal vulnerability that can read arbitrary file information...
CVE-2021-43860
Summary: Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.12.3 and 1.10.6, Flatpak doesn't properly validate...
CVE-2022-23046
Summary: PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet...
