CVE-2022-35035 An commit with 617837b was found to have a heap buffer overflow.
An attacker could leverage this vulnerability to execute code in the context of the user by enticing them to visit a malicious website or by
CVE-2022-28981 Liferay's Hypermedia REST APIs module has a path traversal vulnerability that allows remote attackers to access files outside of the com.liferay.headless.discovery.web META-INF folder.
The module responsible for handling requests for `/Discovery?parameter=value` and `/Discovery?parameter=value` allows remote attackers to access files outside of the intended scope
CVE-2022-3233 Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6.
This issue occurs when a user with administrator rights performs a malicious request, either directly or via an end-user's session. The request can
CVE-2022-38619 The SmartVista SVFE2 v2.2.22 had a SQL injection vulnerability in the UserForm:j_id90 parameter.
An attacker can exploit this to inject SQL commands into the application, resulting in a possible data loss or privilege escalation. The updated version of
CVE-2022-37877 An attacker could elevate their user privileges on a ClearPass OnGuard macOS agent.
To update your Aruba ClearPass Policy Manager software, click here.
A vulnerability in the ClearPass OnGuard Windows agent could allow malicious users on a Windows
Episode
00:00:00
00:00:00