CVE-2021-42782
- EPSS 2.68%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.
CVE-2022-27652
- EPSS 0.24%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 21.11.2024 06:56:06
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. Thi...
CVE-2022-1381
- EPSS 3.1%
- Veröffentlicht 18.04.2022 01:15:10
- Zuletzt bearbeitet 21.11.2024 06:40:36
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution
CVE-2022-1231
- EPSS 1.83%
- Veröffentlicht 15.04.2022 15:15:12
- Zuletzt bearbeitet 21.11.2024 06:40:18
XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4. Stored XSS in the context of the diagram embedder. Depending on the actual context, this ranges from stealing secrets to account hijacking or even to...
CVE-2022-28041
- EPSS 2.07%
- Veröffentlicht 15.04.2022 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:56:39
stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
CVE-2022-28042
- EPSS 1.6%
- Veröffentlicht 15.04.2022 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:56:40
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
CVE-2022-28048
- EPSS 1.56%
- Veröffentlicht 15.04.2022 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:56:40
STB v2.27 was discovered to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac.
CVE-2022-1304
- EPSS 1.38%
- Veröffentlicht 14.04.2022 21:15:08
- Zuletzt bearbeitet 23.04.2025 19:15:53
An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.
CVE-2022-1328
- EPSS 1.71%
- Veröffentlicht 14.04.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:40:29
Buffer Overflow in uudecoder in Mutt affecting all versions starting from 0.94.13 before 2.2.3 allows read past end of input line
CVE-2022-24828
- EPSS 1.86%
- Veröffentlicht 13.04.2022 21:15:07
- Zuletzt bearbeitet 21.11.2024 06:51:11
Composer is a dependency manager for the PHP programming language. Integrators using Composer code to call `VcsDriver::getFileContent` can have a code injection vulnerability if the user can control the `$file` or `$identifier` argument. This leads t...