CVE-2022-0319

Out-of-bounds Read in Conda vim prior to 8.2.

Source: CVE-2022-0319

CVE-2020-19860

When ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap out of bounds read vulnerability. An attacker can leak information on the heap by constructing a zone file payload.

Source: CVE-2020-19860

CVE-2020-19858

Platinum Upnp SDK through 1.2.0 has a directory traversal vulnerability. The attack could remote attack victim by sending http://ip:port/../privacy.avi URL to compromise a victim’s privacy.

Source: CVE-2020-19858

CVE-2022-0318

Heap-based Buffer Overflow in Conda vim prior to 8.2.

Source: CVE-2022-0318

CVE-2022-0329

Code Injection in Conda loguru prior to master.

Source: CVE-2022-0329

CVE-2022-21933

ASUS VivoMini/Mini PC device has an improper input validation vulnerability. A local attacker with system privilege can use system management interrupt (SMI) to modify memory, resulting in arbitrary code execution for controlling the system or disrupting service.

Source: CVE-2022-21933

CVE-2022-0326

NULL Pointer Dereference in Homebrew mruby prior to 3.2.

Source: CVE-2022-0326

CVE-2022-22930

A remote code execution (RCE) vulnerability in the Template Management function of MCMS v5.2.4 allows attackers to execute arbitrary code via a crafted payload.

Source: CVE-2022-22930

CVE-2022-23314

MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via /ms/mdiy/model/importJson.do.

Source: CVE-2022-23314

CVE-2022-23315

MCMS v5.2.4 was discovered to contain an arbitrary file upload vulnerability via the component /ms/template/writeFileContent.do.

Source: CVE-2022-23315