CVE-2021-46171
Modex v2.11 was discovered to contain a NULL pointer dereference in set_create_id() at xtract.c.
Source: CVE-2021-46171
[월:] 2022년 01월
CVE-2021-46169
CVE-2021-46169
Modex v2.11 was discovered to contain an Use-After-Free vulnerability via the component tcache.
Source: CVE-2021-46169
CVE-2021-46170
CVE-2021-46170
An issue was discovered in JerryScript commit a6ab5e9. There is an Use-After-Free in lexer_compare_identifier_to_string in js-lexer.c file.
Source: CVE-2021-46170
CVE-2021-45773
CVE-2021-45773
A NULL pointer dereference in CS104_IPAddress_setFromString at src/iec60870/cs104/cs104_slave.c of lib60870 commit 0d5e76e can lead to a segmentation fault or application crash.
Source: CVE-2021-45773
CVE-2022-22529
CVE-2022-22529
SAP Enterprise Threat Detection (ETD) – version 2.0, does not sufficiently encode user-controlled inputs which may lead to an unauthorized attacker possibly exploit XSS vulnerability. The UIs in ETD are using SAP UI5 standard controls, the UI5 framework provides automated output encoding for its standard controls. This output encoding prevents stored malicious user input from being executed when it is reflected in the UI.
Source: CVE-2022-22529
CVE-2021-46019
CVE-2021-46019
An untrusted pointer dereference in rec_db_destroy() at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash.
Source: CVE-2021-46019
CVE-2022-21137
CVE-2022-21137
Omron CX-One Versions 4.60 and prior are vulnerable to a stack-based buffer overflow while processing specific project files, which may allow an attacker to execute arbitrary code.
Source: CVE-2022-21137
CVE-2021-45781
CVE-2021-45781
GNU Inetutils 2.2.16-cf091 was discovered to contain a heap-based buffer overflow via the component logger at inetutils/src/logger.c.
Source: CVE-2021-45781
CVE-2022-0130
CVE-2022-0130
Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable.sc host prior to remote exploitation.
Source: CVE-2022-0130
CVE-2021-45769
CVE-2021-45769
A NULL pointer dereference in AcseConnection_parseMessage at src/mms/iso_acse/acse.c of libiec61850 v1.5.0 can lead to a segmentation fault or application crash.
Source: CVE-2021-45769