CVE-2022-21248
- EPSS 3.76%
- Veröffentlicht 19.01.2022 12:15:10
- Zuletzt bearbeitet 21.11.2024 06:44:11
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20...
- EPSS 1.66%
- Veröffentlicht 19.01.2022 12:15:10
- Zuletzt bearbeitet 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols...
CVE-2022-21253
- EPSS 1.98%
- Veröffentlicht 19.01.2022 12:15:10
- Zuletzt bearbeitet 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...
CVE-2022-21254
- EPSS 1.69%
- Veröffentlicht 19.01.2022 12:15:10
- Zuletzt bearbeitet 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple pr...
CVE-2022-21256
- EPSS 2.03%
- Veröffentlicht 19.01.2022 12:15:10
- Zuletzt bearbeitet 21.11.2024 06:44:13
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v...
CVE-2022-21673
- EPSS 2.01%
- Veröffentlicht 18.01.2022 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:45:12
Grafana is an open-source platform for monitoring and observability. In affected versions when a data source has the Forward OAuth Identity feature enabled, sending a query to that datasource with an API token (and no other user credentials) will for...
CVE-2022-23303
- EPSS 2.94%
- Veröffentlicht 17.01.2022 02:15:06
- Zuletzt bearbeitet 03.11.2025 20:15:52
The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.
CVE-2022-23304
- EPSS 1.9%
- Veröffentlicht 17.01.2022 02:15:06
- Zuletzt bearbeitet 03.11.2025 20:15:52
The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495.
CVE-2022-0238
- EPSS 0.78%
- Veröffentlicht 16.01.2022 11:15:07
- Zuletzt bearbeitet 21.11.2024 06:38:12
phoronix-test-suite is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2021-44537
- EPSS 2.75%
- Veröffentlicht 15.01.2022 21:15:09
- Zuletzt bearbeitet 21.11.2024 06:31:11
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.