CVE-2022-27503 StoreFront XSS vulnerability in Citrix v1912 and 3.12 before CU9
A remote attacker may trick an authenticated user to make a request to another web application on the same host. This may be exploit due
CVE-2022-24070 Subversion's mod_dav_svn is vulnerable to memory corruption. It may attempt to use memory which has already been freed.
This may allow an attacker to execute arbitrary code on the server. How might I avoid this? It is recommended that you upgrade your Subversion
CVE-2022-24767 GitHub's uninstaller is vulnerable to DLL hijacking when run under the SYSTEM account.
As a result, any DLLs that are loaded by the system are replaced with malicious copies, allowing an attacker to gain access to the system,
CVE-2022-24765 Git for Windows is a fork of Git containing Windows-specific patches. It's vulnerable to LUKS hard disk encryption key compromise.
GIT_DIR` in the Windows registry, which will then be picked up by Git operations. This vulnerability has been patched in Git for Windows v2.
CVE-2022-26852 Dell PowerScale OneFS versions 8.2.x-9.3.x have a predictable seed in the pseudo-random number generator.
A user with DCOM privileges could remotely access and take control of an affected system. Dell software products are affected by the issue. Dell PowerVault
Episode
00:00:00
00:00:00