CVE-2022-24735
- EPSS 2.19%
- Veröffentlicht 27.04.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 06:50:58
Redis is an in-memory database that persists on disk. By exploiting weaknesses in the Lua script execution environment, an attacker with access to Redis prior to version 7.0.0 or 6.2.7 can inject Lua code that will execute with the (potentially highe...
CVE-2022-24736
- EPSS 1.5%
- Veröffentlicht 27.04.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 06:50:58
Redis is an in-memory database that persists on disk. Prior to versions 6.2.7 and 7.0.0, an attacker attempting to load a specially crafted Lua script can cause NULL pointer dereference which will result with a crash of the redis-server process. The ...
CVE-2022-1507
- EPSS 0.85%
- Veröffentlicht 27.04.2022 17:15:07
- Zuletzt bearbeitet 21.11.2024 06:40:51
chafa: NULL Pointer Dereference in function gif_internal_decode_frame at libnsgif.c:599 allows attackers to cause a denial of service (crash) via a crafted input file. in GitHub repository hpjansson/chafa prior to 1.10.2. chafa: NULL Pointer Derefere...
CVE-2022-27239
- EPSS 0.56%
- Veröffentlicht 27.04.2022 14:15:09
- Zuletzt bearbeitet 21.11.2024 06:55:28
In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.
CVE-2022-24882
- EPSS 2.67%
- Veröffentlicht 26.04.2022 16:15:47
- Zuletzt bearbeitet 03.11.2025 21:15:51
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentication does not properly abort when someone provides and empty password value. This issue affects FreeRDP based RDP Serve...
CVE-2022-24883
- EPSS 2.19%
- Veröffentlicht 26.04.2022 16:15:47
- Zuletzt bearbeitet 03.11.2025 21:15:51
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). Prior to version 2.7.0, server side authentication against a `SAM` file might be successful for invalid credentials if the server has configured an invalid `SAM` file path. FreeRD...
CVE-2022-28506
- EPSS 1.26%
- Veröffentlicht 25.04.2022 13:15:49
- Zuletzt bearbeitet 21.11.2024 06:57:26
There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.
CVE-2022-27404
- EPSS 2.79%
- Veröffentlicht 22.04.2022 14:15:09
- Zuletzt bearbeitet 21.11.2024 06:55:40
FreeType commit 1e2eb65048f75c64b68708efed6ce904c31f3b2f was discovered to contain a heap buffer overflow via the function sfnt_init_face.
CVE-2022-27405
- EPSS 2.82%
- Veröffentlicht 22.04.2022 14:15:09
- Zuletzt bearbeitet 09.07.2026 01:17:23
FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNT_Size_Request.
CVE-2022-27406
- EPSS 3.39%
- Veröffentlicht 22.04.2022 14:15:09
- Zuletzt bearbeitet 09.07.2026 01:17:23
FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation violation via the function FT_Request_Size.