CVE-2022-3171 BINARY data in protobuf-java core and lite versions prior to 3.21.7, 3.20.3, 3.19.6 and 3.16.3 can lead to a DoS attack.
The issue has been fixed in the latest release versions of protobuf-java. Users who are currently using the versions mentioned above are advised to upgrade
CVE-2022-39298 Melis-Front displays websites on the Melis Platform. It handles page, plugin, URL rewording, search optimization, and SEO.
This restriction helps to prevent arbitrary code execution. We recommend applying the following upgrade instructions to `melisplatform/melis-front`. # Upgrade melis-front to 5.0.1.
# Unserialize
CVE-2022-41350 ZCS 8.8.15 has a vulnerability to Reflected XSS with the phone parameter of /h/search.
The /h/search?phone=&action=listen request can be used to exploit the following scenario: An attacker sends a victim a message with a
CVE-2022-20432 There is an missing authorization issue in the system service
It is recommended to fix the permission issue in the component.
Oracle WebLogic Server
WebLogic Server
It is recommended to fix the permission issue in
CVE-2022-38053 Microsoft SharePoint Server Remote Code Execution Vulnerability
These vulnerabilities affect SharePoint Server 2013, SharePoint Server 2016, and SharePoint Online. The attacker doesn' need to be authenticated to have remote code execution
Episode
00:00:00
00:00:00