A vulnerability has been found in atftp up to 0.7.4 and classified as critical. This vulnerability affects an unknown function of the file tftpd_file.c of the component Data Handler. Applying the patch d255bf90834fb45be52decf9bc0b4fb46c90f205 is able to eliminate this problem. The bugfix is ready for download at sourceforge.net.
atftp up to 0.7.4 Data tftpd_file.c buffer overflow
- Virtual Patching
- September 14, 2021
- 10:04 am
CVE-2022-22486 : IBM TIVOLI WORKLOAD SCHEDULER 9.4/9.5/10.1 XML EXTERNAL ENTITY REFERENCE
Description IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when
CVE-2023-24997 : APACHE INLONG UP TO 1.5.0 DESERIALIZATION
Description Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0.
CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION
Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any