CVE-2022-20837 DNS ALG vulnerability could allow unauthenticated, remote attacker to cause affected device to reload.
This vulnerability has been assigned the ID CVE-2018-6389. Cisco has released software updates that address these vulnerabilities. However, if you have enabled the Cisco Nexus
CVE-2022-39291 Affected versions of zoneminder are vulnerable to a vulnerability which allows users with "View" system permissions to inject new data into the logs stored by Zoneminder.
ZmMiner is a php script that hooks into the zoneminder logging system and is used to extract data from the server and display it in
CVE-2022-41852 JXPath may be vulnerable to a remote code execution attack when using functions that process XPath strings. Compile() and compilePath() are safe.
An attacker can craft an XPath string to load any class of his/her choice using an external source, such as an XML file.
JXPath
CVE-2022-39273 The control plane for the data processing platform Flyte is FlyteAdmin. Users who enable the default Flyte's authorization server are exposed to the public internet.
Users who have changed the ExternalAuthorizationServer setting in the config or have overridden it in their Flyte Admin’s settings will not be vulnerable to
CVE-2022-41428 Bento4 v1.6.0-639 was found to have a heap overflow in mp4mux::AP4_BitReader::ReadBits()
This could result in denial of service or possibly lead to code execution.
In addition to this, a memory corruption issue was discovered in the
Episode
00:00:00
00:00:00