CVE-2022-0582
- EPSS 2.05%
- Veröffentlicht 14.02.2022 22:15:07
- Zuletzt bearbeitet 03.11.2025 22:15:54
Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
CVE-2022-0572
- EPSS 26.58%
- Veröffentlicht 14.02.2022 12:15:23
- Zuletzt bearbeitet 03.11.2025 21:15:50
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-0571
- EPSS 1.32%
- Veröffentlicht 14.02.2022 12:15:22
- Zuletzt bearbeitet 21.11.2024 06:38:56
Cross-site Scripting (XSS) - Reflected in GitHub repository phoronix-test-suite/phoronix-test-suite prior to 10.8.2.
CVE-2021-45444
- EPSS 1.98%
- Veröffentlicht 14.02.2022 12:15:15
- Zuletzt bearbeitet 21.11.2024 06:32:13
In zsh before 5.8.1, an attacker can achieve code execution if they control a command output inside the prompt, as demonstrated by a %F argument. This occurs because of recursive PROMPT_SUBST expansion.
CVE-2022-0116
- EPSS 1.17%
- Veröffentlicht 12.02.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 06:37:56
Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2022-0117
- EPSS 1.48%
- Veröffentlicht 12.02.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 06:37:56
Policy bypass in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
CVE-2022-0118
- EPSS 1.14%
- Veröffentlicht 12.02.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 06:37:56
Inappropriate implementation in WebShare in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially hide the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2022-0120
- EPSS 0.75%
- Veröffentlicht 12.02.2022 00:15:08
- Zuletzt bearbeitet 21.11.2024 06:37:56
Inappropriate implementation in Passwords in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially leak cross-origin data via a malicious website.
CVE-2022-0096
- EPSS 1.36%
- Veröffentlicht 12.02.2022 00:15:07
- Zuletzt bearbeitet 21.11.2024 06:37:53
Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0097
- EPSS 0.89%
- Veröffentlicht 12.02.2022 00:15:07
- Zuletzt bearbeitet 21.11.2024 06:37:53
Inappropriate implementation in DevTools in Google Chrome prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to to potentially allow extension to escape the sandbox via a crafted HTML page.