CVE-2021-36568
- EPSS 0.79%
- Veröffentlicht 13.09.2022 22:15:08
- Zuletzt bearbeitet 21.11.2024 06:13:50
In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its values "Field name" and "Field description" are vulnerable to Cross Site Scripting S...
CVE-2022-38013
- EPSS 3.07%
- Veröffentlicht 13.09.2022 19:15:12
- Zuletzt bearbeitet 27.05.2026 14:16:39
.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2022-3190
- EPSS 1.75%
- Veröffentlicht 13.09.2022 15:15:09
- Zuletzt bearbeitet 03.11.2025 22:15:59
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file
CVE-2022-36087
- EPSS 1.32%
- Veröffentlicht 09.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 07:12:21
OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of `uri_validate` ...
CVE-2022-40320
- EPSS 1.12%
- Veröffentlicht 09.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 07:21:18
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.
CVE-2022-36109
- EPSS 0.84%
- Veröffentlicht 09.09.2022 18:15:10
- Zuletzt bearbeitet 17.01.2025 13:15:19
Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their su...
CVE-2022-3169
- EPSS 0.23%
- Veröffentlicht 09.09.2022 15:15:15
- Zuletzt bearbeitet 21.11.2024 07:18:58
A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect.
CVE-2020-10735
- EPSS 3.5%
- Veröffentlicht 09.09.2022 14:15:08
- Zuletzt bearbeitet 03.11.2025 22:15:46
A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits (float, decimal, int.from_bytes()...
CVE-2022-25765
- EPSS 39.39%
- Veröffentlicht 09.09.2022 05:15:07
- Zuletzt bearbeitet 21.11.2024 06:52:57
The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.
CVE-2022-27664
- EPSS 2.61%
- Veröffentlicht 06.09.2022 18:15:12
- Zuletzt bearbeitet 21.11.2024 06:56:07
In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.