CVE-2020-14394
- EPSS 0.36%
- Veröffentlicht 17.08.2022 21:15:07
- Zuletzt bearbeitet 21.11.2024 05:03:10
An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of ...
CVE-2022-2862
- EPSS 0.73%
- Veröffentlicht 17.08.2022 20:15:07
- Zuletzt bearbeitet 21.11.2024 07:01:49
Use After Free in GitHub repository vim/vim prior to 9.0.0221.
CVE-2022-2849
- EPSS 0.45%
- Veröffentlicht 17.08.2022 18:15:08
- Zuletzt bearbeitet 21.11.2024 07:01:48
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220.
CVE-2022-2845
- EPSS 0.5%
- Veröffentlicht 17.08.2022 15:15:07
- Zuletzt bearbeitet 25.02.2026 15:19:06
Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218.
CVE-2022-2817
- EPSS 0.5%
- Veröffentlicht 15.08.2022 23:15:09
- Zuletzt bearbeitet 21.11.2024 07:01:44
Use After Free in GitHub repository vim/vim prior to 9.0.0213.
CVE-2022-2816
- EPSS 0.51%
- Veröffentlicht 15.08.2022 22:15:08
- Zuletzt bearbeitet 21.11.2024 07:01:44
Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212.
CVE-2022-38223
- EPSS 0.44%
- Veröffentlicht 15.08.2022 11:21:43
- Zuletzt bearbeitet 04.11.2025 19:15:41
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
CVE-2022-2819
- EPSS 0.54%
- Veröffentlicht 15.08.2022 11:21:31
- Zuletzt bearbeitet 21.11.2024 07:01:45
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0211.
CVE-2022-2613
- EPSS 0.76%
- Veröffentlicht 12.08.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 07:01:21
Use after free in Input in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corruption via specific UI interactions.
CVE-2022-2614
- EPSS 0.63%
- Veröffentlicht 12.08.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 07:01:21
Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.