CVE-2022-20796 On May 4, 2022, a vulnerability in ClamAV was disclosed that could allow an attacker to take control of the affected system.
On May 2017, the Debian project announced that it would not be accepting any new packages for the clamav package in the next release of
CVE-2022-20804 An attack on the Cisco Discovery Protocol could allow an unauthenticated, adjacent attacker to cause a kernel panic.
Cisco has assigned the identifier CVE-2019-1121 to this vulnerability. There are workarounds that could be implemented to prevent the unauthenticated, adjacent attacker from causing a
CVE-2022-26133 The Atlassian Bitbucket Shared Secret Cluster Authenticator in versions 5.14.0 and later, 7.7.0 and later, 7.18.4 and later, 7.19.4 and later and 7.20.0 have a remote unauthenticated attacker.
This vulnerability is due to incorrectly implemented Java deserialization. An attacker can exploit this vulnerability by sending malicious data to the affected server. This can
CVE-2022-26904 Windows User Profile Service Elevation of Privilege Vulnerability.
This may occur if a malicious user is able to successfully log into an account where the UPLEVEL service has been configured and is running.
CVE-2022-24521 Windows Common Log File System Driver Elevation of Privilege Vulnerability
This issue affects all Windows operating systems, including Windows 10. Exploitation of this issue requires that a user downloads and runs a specially crafted application.
Episode
00:00:00
00:00:00