CVE-2022-23803
- EPSS 1.64%
- Veröffentlicht 16.02.2022 17:15:13
- Zuletzt bearbeitet 21.11.2024 06:49:17
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon ReadXYCoord coordinate parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code exe...
CVE-2022-23804
- EPSS 1.64%
- Veröffentlicht 16.02.2022 17:15:13
- Zuletzt bearbeitet 21.11.2024 06:49:17
A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon ReadIJCoord coordinate parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code exe...
CVE-2021-3551
- EPSS 0.19%
- Veröffentlicht 16.02.2022 17:15:11
- Zuletzt bearbeitet 21.11.2024 06:21:49
A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This flaw allows a local attacker to retrieve the file to obtain the admin password and gain admin privile...
CVE-2022-0559
- EPSS 1.26%
- Veröffentlicht 16.02.2022 11:15:07
- Zuletzt bearbeitet 21.11.2024 06:38:54
Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2.
CVE-2022-0613
- EPSS 1.58%
- Veröffentlicht 16.02.2022 09:15:07
- Zuletzt bearbeitet 21.11.2024 06:39:01
Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8.
CVE-2022-25235
- EPSS 4.96%
- Veröffentlicht 16.02.2022 01:15:07
- Zuletzt bearbeitet 05.05.2025 17:18:00
xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.
CVE-2022-21698
- EPSS 5.99%
- Veröffentlicht 15.02.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:45:15
client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Deni...
CVE-2022-0583
- EPSS 1.84%
- Veröffentlicht 14.02.2022 22:15:08
- Zuletzt bearbeitet 03.11.2025 22:15:54
Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
CVE-2022-0586
- EPSS 2.02%
- Veröffentlicht 14.02.2022 22:15:08
- Zuletzt bearbeitet 03.11.2025 22:15:55
Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
CVE-2022-0581
- EPSS 1.84%
- Veröffentlicht 14.02.2022 22:15:07
- Zuletzt bearbeitet 03.11.2025 22:15:54
Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file