CVE-2022-45129 Payara before 2022-11-04 allows attackers to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422.
When deployed to a sub-context, it allows attackers to bypass intended access restrictions via request parameters. This affects Payara Platform Community before 4.1.2.
CVE-2022-39368 - Denial of Service Vulnerability in Eclipse Californium for IoT Cloud Services
Eclipse Californium is a Java library that implements the Constrained Application Protocol (CoAP), RFC 7252. It's widely used to build IoT Cloud services,
CVE-2022-39886 - Exploiting Improper Access Control in Samsung’s IpcRxServiceModeBigDataInfo to Leak Sensitive Device Data
In late 2022, the security world was alerted to a significant vulnerability affecting millions of Samsung Android devices: CVE-2022-39886. This bug, present in the RIL
CVE-2022-39885 - How a Simple Flaw in BootCompletedReceiver_CMCC Exposed Sensitive Device Data
In the ever-evolving world of smartphone security, new vulnerabilities are found every year. One notable example from 2022 was CVE-2022-39885, a security flaw in Samsung’
CVE-2022-44558 - Exploiting the AMS Serialization/Deserialization Mismatch for Privilege Escalation
In late 2022, a severe vulnerability was discovered in the AMS (Application Management System) module, identified as CVE-2022-44558. This flaw revolves around a mismatch between
Episode
00:00:00
00:00:00