CVE-2022-32483 Dell BIOS contains an improper input validation vulnerability
This issue may allow an attacker to gain SYSTEM privileges on a target DMMC or MMC system. The Dell BIOS versions affected are the following:
CVE-2022-42711 Â WhatsUp Gold before 22.1.0 failed to sanitize malicious input.
Now fixed in WhatsUp Gold 22.1.0. In WhatsUp Gold before 22.1.0, the implementation of remote monitoring of host CPU usage did
CVE-2022-41550 GNU/OSIP v5.3.0 had an integer overflow, leading to possible remote code execution.
An attacker could leverage this vulnerability to execute code on the affected system. It is recommended to update your oSIP package as soon as possible.
CVE-2022-41166 Due to memory management issues, when a victim opens a Wavefront Object file sent by an attacker, the application can crash and become compromised.
The main vector of attack is to either send a large amount of crafted Wavefront objects in email messages or via network shares. In such
CVE-2022-41175 An Enhanced Metafile file can be manipulated to trigger a Remote Code Execution.
An attacker can create EMF files by using a 3rd-party 3D printing tool. In order to make it more likely that a victim will open
Episode
00:00:00
00:00:00