CVE-2022-2758 LSIS Co. Ltd. XG5000 PLC programming software is affected when passwords are not adequately encrypted during the communication process.
Users are advised to change the password of the affected PLC as soon as possible. This can be done by setting a password that is
CVE-2022-1405 CNCSoft did not properly sanitize input, which allowed for a possible buffer overflow.
This issue could potentially result in the crash of the application. All users running a version prior to 1.01.32 are advised to update
CVE-2022-36565 Incorrect access control in the Wamp v3.2.6 install directory allows attackers to execute arbitrary code.
CVE-2016-1294 In Wamp v3.2.6 and below, access control in the install directory (C:\Wamp64) of Wamp (a web application framework) allows attackers to
CVE-2022-37172 In older versions of Msys2, attackers can overwrite binaries in the install directory to execute code as the user.
CVE-2018-1182 reveals that it is possible to execute arbitrary code as root by placing an empty file named “~” (tilde) in the root directory of the
CVE-2022-2330 The DLP Endpoint for Windows prior to 11.9.100 can be hacked to access local service that the attacker wouldn't have access to.
This issue can be exploited when DLP Agent processes a specially crafted XML file that contains one or more entity references to local Windows services,
Episode
00:00:00
00:00:00