CVE-2022-3910 : LINUX KERNEL LOCAL PRIVILEGE IO_URING USE AFTER FREE
Description Use After Free vulnerability in Linux Kernel allows Privilege Escalation. An improper Update of Reference Count in io_uring leads
CVE-2022-39365 : PIMCORE UP TO 10.5.8 TWIG TEMPLATE CODE INJECTION
Description Pimcore is an open source data and experience management platform. Prior to version 10.5.9, the user controlled twig templates
CVE-2022-3649 : LINUX KERNEL BPF FS/NILFS2/INODE.C NILFS_NEW_INODE USE AFTER FREE
Description A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of
CVE-2022-42719 : LINUX KERNEL UP TO 5.19.14 MAC80211 STACK USE AFTER FREE
Description A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.14 could
CVE-2022-2977 : LINUX KERNEL TPM DEVICE USE AFTER FREE
Description A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized
CVE-2022-0168 : LINUX KERNEL COMMON INTERNET FILE SYSTEM FS/CIFS/SMB2OPS.C SMB2_IOCTL_QUERY_INFO NULL POINTER DEREFERENCE
Description A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet
CVE-2022-1671 : LINUX KERNEL NET/RXRPC/SERVER_KEY.C RXRPC_PREPARSE_S NULL POINTER DEREFERENCE
Description A NULL pointer dereference flaw was found in rxrpc_preparse_s in net/rxrpc/server_key.c in the Linux kernel. This flaw allows a
CVE-2022-30634 : GOOGLE GO UP TO 1.17.11/1.18.3 ON WINDOWS CRYPTO RAND INFINITE LOOP
Description Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an
CVE-2022-2380 : LINUX KERNEL SM712FB.C SMTCFB_READ OUT-OF-BOUNDS
Description The Linux kernel was found vulnerable out of bounds memory access in the drivers/video/fbdev/sm712fb.c:smtcfb_read() function. The vulnerability could result
Addressing Plugin up to 2.9.0 on GLPI os command injection [CVE-2021-43779]
A vulnerability has been found in Addressing Plugin up to 2.9.0 on GLPI and classified as critical. This vulnerability affects
LLK scratch-svg-renderer 0.2.0 sb3 File cross site scripting
A vulnerability, which was classified as problematic, has been found in LLK scratch-svg-renderer 0.2.0. Affected by this issue is an
livehelperchat Web Page Generation cross site scripting [CVE-2021-4132]
A vulnerability, which was classified as problematic, was found in livehelperchat (Chat Software) (the affected version unknown). This affects some
Convos-Chat prior 6.32 cross site scripting [CVE-2021-42584]
A vulnerability has been found in Convos-Chat (Chat Software) and classified as problematic. This vulnerability affects an unknown function. Upgrading
mruby null pointer dereference [CVE-2021-4110]
A vulnerability was found in mruby (Programming Language Software) (affected version unknown). It has been declared as problematic. Affected by
OpenCMS up to 11.0.2 Sitemap cross site scripting
A vulnerability classified as problematic has been found in OpenCMS up to 11.0.2. Affected is an unknown function of the
vm2 up to 3.9.3 Prototype sandbox
A vulnerability was found in vm2 up to 3.9.3. It has been declared as critical. Affected by this vulnerability is
LedgerSMB 1.8 missing secure attribute [CVE-2021-3882]
A vulnerability classified as problematic was found in LedgerSMB 1.8. Affected by this vulnerability is an unknown part. Upgrading to
Zulip 4.7 linkifiers resource consumption
A vulnerability was found in Zulip 4.7. It has been classified as problematic. Affected is some unknown functionality of the
DynamicPageList3 Extension up to 3.3.5 on MediaWiki DPL Parser resource consumption
A vulnerability was found in DynamicPageList3 Extension up to 3.3.5 on MediaWiki. It has been declared as problematic. Affected by
Moby up to 20.10.8 /var/lib/docker permissions
A vulnerability has been found in Moby up to 20.10.8 and classified as critical. This vulnerability affects some unknown processing
Redis up to 5.0.13/6.0.15/6.2.5 Lua Stack out-of-bounds write
A vulnerability was found in Redis up to 5.0.13/6.0.15/6.2.5. It has been classified as critical. Affected is an unknown functionality
Shuup up to 2.10.8 Error Page cross site scripting
A vulnerability was found in Shuup up to 2.10.8. It has been declared as problematic. Affected by this vulnerability is
OpenCRX up to 5.1.0 Password Reset cross site scripting
A vulnerability, which was classified as problematic, was found in OpenCRX up to 5.1.0. Affected is an unknown code block
Linux Kernel Timer Tree lib/timerqueue.c timerqueue_add initialization
A vulnerability was found in Linux Kernel (Operating System) (affected version not known). It has been rated as problematic. Affected