CVE-2022-45199 Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.
This issue was disclosed to the third party vendor who has confirmed the issue and is working on a patch. It has been reported that
CVE-2022-3971 A critical vulnerability was found in matrix-appservice-irc up to 0.35.1. The manipulation of the argument roomIds leads to sql injection.
It is worth noting that this release implements matrix-appservice-irc 0.35.1 and is not vulnerable to this issue. Moreover, it is possible to upgrade
CVE-2022-38387 - Exploiting Command Injection in IBM Cloud Pak for Security (CP4S)
Security vulnerabilities in enterprise platforms can have devastating consequences, especially when exploitation leads to remote command execution. One critical vulnerability, CVE-2022-38387, affects IBM Cloud Pak
CVE-2022-41882 The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer
enabled` system config to `false`. As an additional security measure, users should consider upgrading their Nextcloud server to version 3.6.1. More information on
CVE-2022-41904 Element iOS is a Matrix client based on the MatrixSDK. Before version 1.9.7, events encrypted using Megolm that could not be trusted were unmarked.
On the Android mobile operating system, Element supports Android 4.1 or later. On Android, Element is accessed through the Google Play Store. Element iOS
Episode
00:00:00
00:00:00