CVE-2022-40608 IBM Spectrum Protect Plus could be affected by a vulnerability that allows a directory traversal attack to download any file on the target machine.
This can be exploited by an attacker to exfiltrate confidential data or to infect the system with malware. IBM X-Force ID: 264215. Microsoft Windows Server
CVE-2022-3218 The WiFi Mouse authentication mechanism is trivially bypassed, which can result in remote code execution.
This is made possible by the fact that the WiFi Mouse (Mouse Server) provides no authentication mechanism to prevent attackers from simply modifying the HTTP
CVE-2022-38618 The SmartVista SVFE2 v2.2.22 had a SQL injection vulnerability on the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters.
If the user has the Module Manager role and navigates to these vectors, the malicious code will allow the user to insert and delete arbitrary
CVE-2022-35704 Adobe Bridge versions 12.0.2 and earlier are affected by a Use After Free vulnerability that could lead to arbitrary code execution.
An attacker could leverage social engineering to convince a victim to open an email message with a malicious file attached.
Adobe is aware of reports
CVE-2022-35701 Adobe Bridge versions 12.0.2 and earlier are affected by a out-of-bounds write vulnerability that could lead to arbitrary code execution.
Adobe recommends monitoring for signs of anomalous behavior from systems running Bridge CC 2017.
On systems running Adobe Bridge CC 2017, administrators are advised to
Episode
00:00:00
00:00:00