» 2022 » 9월

CVE-2022-37775

Posted on 2022년 9월 17일2022년 9월 17일 by admin

CVE-2022-37775

Genesys PureConnect Interaction Web Tools Chat Service (up to at least 26- September- 2019) allows XSS within the Printable Chat History via the participant -> name JSON POST parameter.

Source: CVE-2022-37775

CVE-2022-38411

Posted on 2022년 9월 17일2022년 9월 17일 by admin

CVE-2022-38411

Adobe Animate version 21.0.11 (and earlier) and 22.0.7 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Source: CVE-2022-38411

CVE-2021-42597

Posted on 2022년 9월 17일2022년 9월 17일 by admin

CVE-2021-42597

A Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Storage Unit Rental Management System PHP 8.0.10 , Apache 2.4.14, SURMS V 1.0 via the Add New Tenant List Rent List form.

Source: CVE-2021-42597

CVE-2022-36402

Posted on 2022년 9월 17일2022년 9월 17일 by admin

CVE-2022-36402

An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file ‘/dev/dri/renderD128 (or Dxxx)’. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).

Source: CVE-2022-36402

CVE-2021-41731

Posted on 2022년 9월 17일2022년 9월 17일 by admin

CVE-2021-41731

Cross Site Scripting (XSS vulnerability exists in )Sourcecodester News247 News Magazine (CMS) PHP 5.6 or higher and MySQL 5.7 or higher via the blog category name field

Source: CVE-2021-41731