CVE-2022-1851
- EPSS 1.57%
- Veröffentlicht 25.05.2022 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:41:36
Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-29221
- EPSS 4.54%
- Veröffentlicht 24.05.2022 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:58:44
Smarty is a template engine for PHP, facilitating the separation of presentation (HTML/CSS) from application logic. Prior to versions 3.1.45 and 4.1.1, template authors could inject php code by choosing a malicious {block} name or {include} file name...
CVE-2022-29599
- EPSS 4.03%
- Veröffentlicht 23.05.2022 11:16:10
- Zuletzt bearbeitet 21.11.2024 06:59:23
In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.
CVE-2022-1785
- EPSS 0.49%
- Veröffentlicht 19.05.2022 13:15:07
- Zuletzt bearbeitet 03.11.2025 21:15:50
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977.
- EPSS 0.53%
- Veröffentlicht 18.05.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:41:21
A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine.
CVE-2022-30974
- EPSS 1.1%
- Veröffentlicht 18.05.2022 11:15:15
- Zuletzt bearbeitet 21.11.2024 07:03:39
compile in regexp.c in Artifex MuJS through 1.2.0 results in stack consumption because of unlimited recursion, a different issue than CVE-2019-11413.
CVE-2022-30975
- EPSS 1.1%
- Veröffentlicht 18.05.2022 11:15:15
- Zuletzt bearbeitet 21.11.2024 07:03:39
In Artifex MuJS through 1.2.0, jsP_dumpsyntax in jsdump.c has a NULL pointer dereference, as demonstrated by mujs-pp.
CVE-2022-30688
- EPSS 0.41%
- Veröffentlicht 17.05.2022 19:15:08
- Zuletzt bearbeitet 03.11.2025 22:15:58
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters a...
CVE-2022-29581
- EPSS 1.04%
- Veröffentlicht 17.05.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:59:20
Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.
CVE-2022-1586
- EPSS 3.19%
- Veröffentlicht 16.05.2022 21:15:07
- Zuletzt bearbeitet 25.03.2025 19:39:30
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occu...