CVE Daily
← All years

All CVEs — 2022

Page 4/183.

Browse all CVEs by publication year. Use filters to refine.

CVSS ≥ 0.0
2022-12-25
Medium

CVE-2022-45895

Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path discl…

CVSS: 6.5 CWE: CWE-668
Read more
Medium

CVE-2022-45894

GetFile.aspx in Planet eStream before 6.72.10.07 allows ..\ directory traversal to read arbitrary local files.

CVSS: 6.5 CWE: CWE-22
Read more
High

CVE-2022-45893

Planet eStream before 6.72.10.07 allows a low-privileged user to gain access to administrative and high-privileged user accounts by changing the value of the ON cookie. A brute-force attack can calcu…

CVSS: 8.8 CWE: CWE-307
Read more
High

CVE-2022-45197

Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.

CVSS: 7.5 CWE: CWE-295
Read more
Critical

CVE-2022-44640

Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).

CVSS: 9.8 CWE: CWE-415
Read more
Medium

CVE-2022-44381

Snipe-IT through 6.0.14 allows attackers to check whether a user account exists because of response variations in a /password/reset request.

CVSS: 5.3 CWE: CWE-203
Read more
Medium

CVE-2022-44380

Snipe-IT before 6.0.14 is vulnerable to Cross Site Scripting (XSS) for View Assigned Assets.

CVSS: 5.4 CWE: CWE-79
Read more
High

CVE-2022-44017

An issue was discovered in Simmeth Lieferantenmanager before 5.6. Due to errors in session management, an attacker can log back into a victim's account after the victim logged out - /LMS/LM/#main can…

CVSS: 7.5 CWE: CWE-384
Read more
High

CVE-2022-44016

An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can download arbitrary files from the web server by abusing an API call: /DS/LM_API/api/ConfigurationService/GetImages wi…

CVSS: 7.5 CWE: CWE-22
Read more
Critical

CVE-2022-44015

An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can inject raw SQL queries. By activating MSSQL features, the attacker is able to execute arbitrary commands on the MSSQL…

CVSS: 9.8 CWE: CWE-89
Read more
Medium

CVE-2022-44014

An issue was discovered in Simmeth Lieferantenmanager before 5.6. In the design of the API, a user is inherently able to fetch arbitrary SQL tables. This leaks all user passwords and MSSQL hashes via…

CVSS: 6.5 CWE: CWE-284
Read more
Critical

CVE-2022-44013

An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can make various API calls without authentication because the password in a Credential Object is not checked.

CVSS: 9.1 CWE: CWE-306
Read more
Medium

CVE-2022-44012

An issue was discovered in /DS/LM_API/api/SelectionService/InsertQueryWithActiveRelationsReturnId in Simmeth Lieferantenmanager before 5.6. An attacker can execute JavaScript code in the browser of t…

CVSS: 5.4 CWE: CWE-79
Read more
High

CVE-2022-42953

Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs. The affecte…

CVSS: 7.5 CWE: CWE-425
Read more
Medium

CVE-2022-45892

In Planet eStream before 6.72.10.07, multiple Stored Cross-Site Scripting (XSS) vulnerabilities exist: Disclaimer, Search Function, Comments, Batch editing tool, Content Creation, Related Media, Crea…

CVSS: 5.4 CWE: CWE-79
Read more
Critical

CVE-2022-45891

Planet eStream before 6.72.10.07 allows attackers to call restricted functions, and perform unauthenticated uploads (Upload2.ashx) or access content uploaded by other users (View.aspx after Ajax.asmx…

CVSS: 9.1 CWE: CWE-863
Read more
Medium

CVE-2022-45890

In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting (XSS) vulnerability exists via any metadata filter field (e.g., search within Default.aspx with the r or fo parameter).

CVSS: 6.1 CWE: CWE-79
Read more
High

CVE-2022-45889

Planet eStream before 6.72.10.07 allows a remote attacker (who is a publisher or admin) to obtain access to all records stored in the database, and achieve the ability to execute arbitrary SQL comman…

CVSS: 7.2 CWE: CWE-89
Read more
2022-12-24
Critical

CVE-2022-47949

The Nintendo NetworkBuffer class, as used in Animal Crossing: New Horizons before 2.0.6 and other products, allows remote attackers to execute arbitrary code via a large UDP packet that causes a buff…

CVSS: 9.8 CWE: CWE-120
Read more
Medium

CVE-2022-47934

Brave Browser before 1.43.88 allowed a remote attacker to cause a denial of service in private and guest windows via a crafted HTML file that mentions an ipfs:// or ipns:// URL. This is caused by an…

CVSS: 6.5 CWE: CWE-400
Read more
Medium

CVE-2022-47933

Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted HTML file that references the IPFS scheme. This vulnerability is caused by an uncaught exception in t…

CVSS: 6.5 CWE: CWE-755
Read more
Medium

CVE-2022-47932

Brave Browser before 1.43.34 allowed a remote attacker to cause a denial of service via a crafted HTML file that mentions an ipfs:// or ipns:// URL. This vulnerability is caused by an incomplete fix…

CVSS: 6.5 CWE: CWE-400
Read more
High

CVE-2022-46175

JSON5 is an extension to the popular JSON file format that aims to be easier to write and maintain by hand (e.g. for config files). The `parse` method of the JSON5 library before and including versio…

CVSS: 7.1 CWE: CWE-1321
Read more
High

CVE-2022-45798

A link following vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and Trend Micro Apex One as a Service could allow a local attacker to escalate privileges by creating a s…

CVSS: 7.8 CWE: CWE-59
Read more
Medium

CVE-2022-43860

IBM Navigator for i 7.3, 7.4, and 7.5 could allow an authenticated user to obtain sensitive information they are authorized to but not while using this interface. By performing an SQL injection an a…

CVSS: 4.3 CWE: CWE-89
Read more
High

CVE-2022-38658

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service re…

CVSS: 7.7 CWE: CWE-311
Read more
Medium

CVE-2022-22449

IBM Security Verify Governance, Identity Manager 10.01 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This informat…

CVSS: 5.3 CWE: CWE-209
Read more
2022-12-23
High

CVE-2022-47633

An image signature validation bypass vulnerability in Kyverno 1.8.3 and 1.8.4 allows a malicious image registry (or a man-in-the-middle attacker) to inject unsigned arbitrary container images into a…

CVSS: 8.1 CWE: CWE-287
Read more
Medium

CVE-2022-40011

Cross Site Scripting (XSS) vulnerability in typora through 1.38 allows remote attackers to run arbitrary code via export from editor.

CVSS: 6.1 CWE: CWE-79
Read more
Medium

CVE-2022-47946

An issue was discovered in the Linux kernel 5.10.x before 5.10.155. A use-after-free in io_sqpoll_wait_sq in fs/io_uring.c allows an attacker to crash the kernel, resulting in denial of service. fini…

CVSS: 5.5 CWE: CWE-416
Read more
High

CVE-2022-28229

The hash functionality in userver before 42059b6319661583b3080cab9b595d4f8ac48128 allows attackers to cause a denial of service via crafted HTTP request, involving collisions.

CVSS: 7.5 CWE: CWE-400
Read more
Critical

CVE-2022-28228

Out-of-bounds read was discovered in YDB server. An attacker could construct a query with insert statement that would allow him to read sensitive information from other memory locations or cause a cr…

CVSS: 9.1 CWE: CWE-125
Read more
Critical

CVE-2022-47945

ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). An unauthenticated and remote attacker can exploit…

CVSS: 9.8 CWE: CWE-22
Read more
High

CVE-2022-23854

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of…

CVSS: 7.5 CWE: CWE-23
Read more
Medium

CVE-2022-4692

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 5.4 CWE: CWE-79
Read more
Medium

CVE-2022-43849

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service. IBM X-Force ID: 239170.

CVSS: 6.2 CWE: CWE-20
Read more
Medium

CVE-2022-43848

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. IBM X-Force ID: 239169.

CVSS: 6.2 CWE: CWE-20
Read more
High

CVE-2022-41290

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. IBM X-Force ID: 236690.

CVSS: 8.4 CWE: CWE-250
Read more
Medium

CVE-2022-39164

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. IBM X-Force ID: 235181.

CVSS: 6.2 CWE: CWE-400
Read more
High

CVE-2022-46570

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46569

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46568

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46566

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46563

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46562

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46561

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module.

CVSS: 7.2 CWE: CWE-787
Read more
High

CVE-2022-46560

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.

CVSS: 7.2 CWE: CWE-787
Read more
Critical

CVE-2022-45721

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45720

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45719

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the gotoUrl parameter in the formPortalAuth function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45718

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45717

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited…

CVSS: 9.8 CWE: CWE-78
Read more
Critical

CVE-2022-45716

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45715

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45714

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45712

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45711

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the hostname parameter in the formSetNetCheckTools function.

CVSS: 9.8 CWE: CWE-78
Read more
Critical

CVE-2022-45710

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45709

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

CVSS: 9.8 CWE: CWE-78
Read more
Critical

CVE-2022-45708

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45707

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function.

CVSS: 9.8 CWE: CWE-120
Read more
Critical

CVE-2022-45706

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function.

CVSS: 9.8 CWE: CWE-120
Read more
Medium

CVE-2022-40233

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 235599.

CVSS: 6.2 CWE: CWE-20
Read more
Medium

CVE-2022-39165

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183.

CVSS: 6.2 CWE: CWE-400
Read more
High

CVE-2022-47943

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of-bounds read and OOPS for SMB2_WRITE, when there is a large length in the zero DataOffset case.

CVSS: 8.1 CWE: CWE-125
Read more
High

CVE-2022-47942

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl, related to use of SMB2_QUERY_INFO_HE after a malformed S…

CVSS: 8.8 CWE: CWE-787
Read more
High

CVE-2022-47941

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c omits a kfree call in certain smb2_handle_negotiate error conditions, aka a memory leak.

CVSS: 7.5 CWE: CWE-401
Read more
High

CVE-2022-47940

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

CVSS: 8.1 CWE: CWE-125
Read more
Critical

CVE-2022-47939

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT.

CVSS: 9.8 CWE: CWE-416
Read more
Medium

CVE-2022-47938

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2_TREE_CONNECT.

CVSS: 6.5 CWE: CWE-125
Read more
High

CVE-2022-38757

A vulnerability has been identified in Micro Focus ZENworks 2020 Update 3a and prior versions. This vulnerability allows administrators with rights to perform actions (e.g., install a bundle) on a se…

CVSS: 7.2 CWE: CWE-269
Read more
Critical

CVE-2022-46642

D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the auto_upgrade_hour parameter in the SetAutoUpgradeInfo function.

CVSS: 9.9 CWE: CWE-77
Read more
Critical

CVE-2022-46641

D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the lan(0)_dhcps_staticlist parameter in the SetIpMacBindSettings function.

CVSS: 9.9 CWE: CWE-77
Read more
Critical

CVE-2022-44567

A command injection vulnerability exists in Rocket.Chat-Desktop <3.8.14 that could allow an attacker to pass a malicious url of openInternalVideoChatWindow to shell.openExternal(), which may lead to…

CVSS: 9.8 CWE: CWE-78
Read more
Medium

CVE-2022-44565

An improper access validation vulnerability exists in airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <v1.0.0 and airFiber GBE <1.4.1 that allows a malicious actor to retrieve status and…

CVSS: 5.3 CWE: CWE-284
Read more
High

CVE-2022-43551

A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear…

CVSS: 7.5 CWE: CWE-319
Read more
Medium

CVE-2022-23547

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-…

CVSS: 6.5 CWE: CWE-122
Read more
Medium

CVE-2022-46171

Tauri is a framework for building binaries for all major desktop platforms. The filesystem glob pattern wildcards `*`, `?`, and `[...]` match file path literals and leading dots by default, which uni…

CVSS: 6.8 CWE: CWE-22
Read more
Medium

CVE-2022-4690

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 5.4 CWE: CWE-79
Read more
High

CVE-2022-4689

Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 8.8 CWE: CWE-284
Read more
High

CVE-2022-4688

Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 8.8 CWE: CWE-285
Read more
High

CVE-2022-4687

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 8.1 CWE: CWE-648
Read more
Critical

CVE-2022-4686

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 9.8 CWE: CWE-639
Read more
High

CVE-2022-4684

Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 8.8 CWE: CWE-284
Read more
Medium

CVE-2022-4683

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.

CVSS: 6.5 CWE: CWE-614
Read more
High

CVE-2022-33324

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Se…

CVSS: 7.5 CWE: CWE-404
Read more
Critical

CVE-2021-32692

Activity Watch is a free and open-source automated time tracker. Versions prior to 0.11.0 allow an attacker to execute arbitrary commands on any macOS machine with ActivityWatch running. The attacker…

CVSS: 9.6 CWE: CWE-77
Read more
High

CVE-2022-4665

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.

CVSS: 8.8 CWE: CWE-434
Read more
Medium

CVE-2022-46492

nbnbk commit 879858451d53261d10f77d4709aee2d01c72c301 was discovered to contain an arbitrary file read vulnerability via the component /api/Index/getFileBinary.

CVSS: 6.5 CWE: CWE-22
Read more
Critical

CVE-2022-47931

IO FinNet tss-lib before 2.0.0 allows a collision of hash values.

CVSS: 9.1 CWE: CWE-326
Read more
High

CVE-2022-40899

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

CVSS: 7.5 CWE: CWE-400
Read more
High

CVE-2022-40898

An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.

CVSS: 7.5 CWE: CWE-20
Read more
Medium

CVE-2022-40897

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expressio…

CVSS: 5.9 CWE: CWE-1333
Read more
Medium

CVE-2022-23539

Versions `<=8.5.1` of `jsonwebtoken` library could be misconfigured so that legacy, insecure key types are used for signature verification. For example, DSA keys could be used with the RS256 algorith…

CVSS: 5.9 CWE: CWE-327
Read more
Medium

CVE-2022-23513

Pi-Hole is a network-wide ad blocking via your own Linux hardware, AdminLTE is a Pi-hole Dashboard for stats and more. In case of an attack, the threat actor will obtain the ability to perform an una…

CVSS: 5.3 CWE: CWE-284
Read more
2022-12-22
Medium

CVE-2022-47928

In MISP before 2.4.167, there is XSS in the template file uploads in app/View/Templates/upload_file.ctp.

CVSS: 6.1 CWE: CWE-79
Read more
Critical

CVE-2022-46493

Default version of nbnbk was discovered to contain an arbitrary file upload vulnerability via the component /api/User/download_img.

CVSS: 9.8 CWE: CWE-434
Read more
Medium

CVE-2022-46491

A Cross-Site Request Forgery (CSRF) vulnerability in the Add Administrator function of the default version of nbnbk allows attackers to arbitrarily add Administrator accounts.

CVSS: 6.5 CWE: CWE-352
Read more
Medium

CVE-2022-4662

A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.

CVSS: 5.5 CWE: CWE-455
Read more
Medium

CVE-2022-43603

A denial of service vulnerability exists in the ZfileOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to denial of service. A…

CVSS: 5.9 CWE: CWE-476
Read more
High

CVE-2022-43602

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer ove…

CVSS: 8.1 CWE: CWE-122
Read more
High

CVE-2022-43601

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer ove…

CVSS: 8.1 CWE: CWE-122
Read more
High

CVE-2022-43600

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer ove…

CVSS: 8.1 CWE: CWE-122
Read more
High

CVE-2022-43599

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer ove…

CVSS: 8.1 CWE: CWE-122
Read more
High

CVE-2022-43598

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbit…

CVSS: 8.1 CWE: CWE-122
Read more
High

CVE-2022-43597

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbit…

CVSS: 8.1 CWE: CWE-122
Read more
Medium

CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leak…

CVSS: 5.9 CWE: CWE-125
Read more
Medium

CVE-2022-43595

Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. Specially crafted ImageOutput Objects can lead to multiple null…

CVSS: 5.9 CWE: CWE-476
Read more
Medium

CVE-2022-43594

Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. Specially crafted ImageOutput Objects can lead to multiple null…

CVSS: 5.9 CWE: CWE-476
Read more
Medium

CVE-2022-43593

A denial of service vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to null pointer dereferen…

CVSS: 5.9 CWE: CWE-476
Read more
Medium

CVE-2022-43592

An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data…

CVSS: 5.9 CWE: CWE-125
Read more
High

CVE-2022-41999

A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2. A specially-crafted .dds can lead to denial of service…

CVSS: 7.5 CWE: CWE-476
Read more
High

CVE-2022-41988

An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0. A specially-crafted TIFF file can lead to a disclosure…

CVSS: 7.5 CWE: CWE-125
Read more
High

CVE-2022-41981

A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0. A specially-crafted targa file can lead to out of bounds read and write on the process stack…

CVSS: 8.1 CWE: CWE-121
Read more
Low

CVE-2022-41977

An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A specially-crafted TIFF file can lead to information disclosure. An a…

CVSS: 3.3 CWE: CWE-125
Read more
Critical

CVE-2022-41838

A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker c…

CVSS: 9.8 CWE: CWE-122
Read more
Critical

CVE-2022-41837

An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2. Specially-crafted exif metadata can lead to stack-base…

CVSS: 9.8 CWE: CWE-562
Read more
Critical

CVE-2022-41794

A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0. A specially-crafted PSD file can lead to arbitrary code execution. An attacker ca…

CVSS: 9.8 CWE: CWE-122
Read more
Medium

CVE-2022-41684

A heap out of bounds read vulnerability exists in the OpenImageIO master-branch-9aeece7a when parsing the image file directory part of a PSD image file. A specially-crafted .psd file can cause a read…

CVSS: 5.5 CWE: CWE-125
Read more
Critical

CVE-2022-41649

A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0. A specially-crafted TIFF file can cause a read of adjacent heap memory,…

CVSS: 9.1 CWE: CWE-125
Read more