Read more

(Pwn2Own) Prosys OPC UA SDK for Java OPC UA Messages Resource Exhaustion Denial-of-Service Vulnerability [CVE-2022-30551]

CVE number = CVE-2022-30551 This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Prosys OPC

Read more

Cisco FirePOWER Software for ASA FirePOWER Module Command Injection Vulnerability [CVE-2022-20828]

CVE number – CVE-2022-20828 A vulnerability in the CLI parser of Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER

Read more

Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability [CVE-2022-20802]

CVE number – CVE-2022-20802 A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an

Read more

Spring Framework remote code execution [CVE-2022-22965]

CVE number = CVE-2022-22965 Spring Framework could allow a remote attacker to execute arbitrary code on the system, caused by

Read more

Microsoft Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability [CVE-2022-30149]

CVE number – CVE-2022-30149 Microsoft Windows could allow a remote attacker to execute arbitrary code on the system, caused by

Read more

Drupal Out-of-band security update addresses two vulnerabilities in the third-party library Guzzle [CVE-2022-31042 and CVE-2022-31043]

CVE numbers = CVE-2022-31042 and CVE-2022-31043 Drupal uses the third-party Guzzle library for handling HTTP requests and responses to external

Read more

Microsoft Word glTF-SDK Integer Overflow Remote Code Execution Vulnerability [CVE-2021-43875]

CVE number – CVE-2021-43875 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User

Read more

Cisco RV340 JSON RPC set-snmp Stack-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2022-20753]

CVE number – CVE-2022-20753 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers.

Read more

FreeBSD 802.11 Network Subsystem Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2022-23088]

CVE number = CVE-2022-23088 This vulnerability in FreeBSD allows network-adjacent attackers to execute arbitrary code on affected installations of FreeBSD

Read more
%d bloggers like this: