CVE-2022-41407 The App v1.0 had a SQL injection vulnerability via the id parameter.
A user with a low privilege level (e.g., guest) could potentially exploit this vulnerability and inject SQL code to gain higher privileges. A SQL
CVE-2022-39015 BOE AdminTools/SDK can access information which would be restricted with certain conditions.
The information accessed by an attacker depends on what information is stored in the user database and how the data is stored. User information may
CVE-2022-41195 Memory management issues can lead to EAAmiga Interchange File Format files being opened by victims and resulting in a Remote Code Execution.
This vulnerability can be exploited by hackers to get remote code execution on the system of the victim as it is a part of SAP
CVE-2022-41194 The memory management of the victim's computer is poor, which makes it crash when a .eps file is opened.
The attacker needs to send an email with malicious .eps file to the victim to exploit this vulnerability. The .eps file should be received by
CVE-2022-41167 Memory management issues in AutoCAD can lead to RCE when a victim opens a file containing malicious code.
The attacker can do this by using a memory-resident proof-of-concept (PoC) or use a Remote Code Injection attack to inject malicious code into a vulnerable
Episode
00:00:00
00:00:00