A vulnerability, which was classified as critical, has been found in Concrete5 up to 8.5.4. This issue affects an unknown code of the component IP Address Handler. Upgrading to version 8.5.5 eliminates this vulnerability. The upgrade is hosted for download at documentation.concretecms.org.
Concrete5 up to 8.5.4 IP Address server-side request forgery
CVE-2022-37452 : EXIM UP TO 4.94 ALIAS LIST HOST.C HOST_NAME_LOOKUP SENDER_HOST_NAME HEAP-BASED OVERFLOW
Description Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is
Description Kaspersky VPN Secure Connection for Windows version up to 21.5 was vulnerable to arbitrary file deletion via abuse of