CVE-2022-25679 - How Improper Access Control in Snapdragon Broadcast Receivers Can Crash Your Video
In the fast-evolving world of smartphones and IoT gadgets, Qualcomm's Snapdragon chips are everywhere—from mobile phones to wearables and smart home devices.
CVE-2022-25741 Denial of service in WLAN due to potential null pointer dereference in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, and more.
it is possible due to the insufficient validation of the input data by the software. This might lead to a crash of the entire device
CVE-2022-40847 There is a command injection vulnerability in the function formSetFixTools in Tenda W15Ev2 V15.11.0.10(1576).
Attackers can exploit this vulnerability to gain remote access, install other malicious software, or simply hijack the session of the targeted device.
It is recommended
CVE-2022-38705 IBM CICS TX 11.1 Standard and Advanced could be vulnerable to a reverse tabnabbing flaw that could be exploited to redirect victims to phishing sites.
In some cases, this vulnerability could be exploited to open a backdoor on the system, by using a malicious program or a legitimate application with
CVE-2022-43693 - Concrete CMS CSRF Flaw in Core OAuth – How Attackers Can Hijack Your Login
Concrete CMS is a popular open-source content management system powering many government and enterprise websites. In late 2022, a worrying vulnerability — now tracked as CVE-2022-43693
Episode
00:00:00
00:00:00