CVE-2022-22229 An XSS vulnerability in the Control Center Controller pages of Juniper Networks Paragon Active Assurance allows for persistent attacks.
This vulnerability can be exploited remotely by a low skill level attacker without much knowledge or experience in web development. An attacker can exploit this
CVE-2022-22226 An Uncontrolled Memory Allocation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an unauthenticated adjacently located attacker sending specific packets to crash the PFE.
18.4 versions prior to 18.4R2-S6, 18.4R3-S6; 19.2 versions prior to 19.2R1-S6, 19.2R2-S6, 19.2R3-S6; 20.1 versions prior to
CVE-2022-42149 The main application file, KF 4.0, is vulnerable to SSRF due to a controller call.
SSRF is a type of cross-site request forgery. A hacker can trick a victim's website to send a request to another website, which
CVE-2022-3559 An issue with Exim was found and is critical. It involves memory corruption and use after free. The patch name is 4e9ed49f8f12eb331b29bd5b6dc3693c520fddc2.
Given the nature of the vulnerability, attackers can use it to manipulate the server, conduct Denial of Service, etc.
Impact of the Vulnerability:
By exploiting
CVE-2022-3549 An issue was found in SourceCodester Simple Cold Storage Management System 1.0 that affects Avatar Handler file processing.
This vulnerability is related to the one found in a different CMS software. It is advised to apply the solution provided in the linked advisory.
Episode
00:00:00
00:00:00