CVE-2022-20962 - How Hackers Can Take Over Cisco ISE with a Path Traversal Attack
In late 2022, Cisco revealed a major weakness found in their Identity Services Engine (ISE) product, catalogued as CVE-2022-20962. This flaw is about as serious
CVE-2022-27893 - Authentication Data Leaked in The Foundry Magritte Plugin osisoft-pi-web-connector (v.15. - v.43.)
If you’re using The Foundry’s Magritte plugin and its osisoft-pi-web-connector integration, and your version is between .15. and .43., your system may be
CVE-2022-3023 - Exploiting Externally-Controlled Format String Vulnerability in TiDB (pingcap/tidb) Before 6.4./6.1.3
Published: 2024-06-05
Author: Security Analyst
Affected Product: TiDB
Versions Affected: Prior to 6.4., 6.1.3
When dealing with databases, data formatting is everything.
CVE-2022-43571 - Exploiting Splunk Enterprise PDF Generation to Run Arbitrary Code
Splunk is a popular platform for searching, monitoring, and analyzing machine-generated data. It's everywhere, from banks to Fortune 500s. But in 2022, a
CVE-2022-43574 - How Weak Permissions in IBM Robotic Process Automation Allowed Configuration Exposure
In late 2022, a significant security issue came to light affecting IBM Robotic Process Automation (RPA) versions 21..1 through 21..5. This vulnerability, referenced
Episode
00:00:00
00:00:00