CVE-2022-29155 In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, which is vulnerable to SQL injection.
A remote attacker may leverage this vulnerability to perform SQL injection and may also obtain additional system privileges.
OpenLDAP is updated to 2.5.13
CVE-2022-21227 - How a Simple `toString` in sqlite3 Could Crash Your Node.js App
The software world is full of small missteps that lead to big problems. One such issue is CVE-2022-21227, a vulnerability in the popular Node.js
CVE-2022-20786 - SQL Injection in Cisco Unified Communications Manager IM & Presence Service – Explained and Exploited
In early 2022, Cisco disclosed CVE-2022-20786, a security issue affecting the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM
CVE-2022-26133 The Atlassian Bitbucket Shared Secret Cluster Authenticator in versions 5.14.0 and later, 7.7.0 and later, 7.18.4 and later, 7.19.4 and later and 7.20.0 have a remote unauthenticated attacker.
This vulnerability is due to incorrectly implemented Java deserialization. An attacker can exploit this vulnerability by sending malicious data to the affected server. This can
CVE-2022-21440 - MySQL Server Optimizer Flaw – Exploit, Analysis, and Code Snippet
In January 2022, Oracle disclosed a significant vulnerability in its MySQL Server product, tracked as CVE-2022-21440. Found specifically in the Server: Optimizer component, this bug
Episode
00:00:00
00:00:00