CVE-2022-43766 - Apache IoTDB Denial of Service Vulnerability in REGEXP Queries for Java 8
The Apache IoTDB is an open-source data management system specifically optimized for Internet of Things (IoT) and time-series data. It is widely used in industries
CVE-2022-42890 - Critical Vulnerability in Apache Batik Lets Attackers Execute Untrusted Java Code via SVG and JavaScript
A new critical vulnerability in Apache Batik, a software library for handling Scalable Vector Graphics (SVG), has been discovered. This vulnerability, tracked as CVE-2022-42890, allows
CVE-2022-34870 Apache Geode 1.15.0 to 1.15.44 are vulnerable to XSS when using Pulse to view Region entries.
When an end-user visits an affected Apache Geode instance, they are redirected to the login page of their choosing.
This redirection happens when a user
CVE-2022-3636 An issue was found in Linux Kernel, which affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free.
ETMC. The firmware update will be released soon. The detailed information about the patch and the applicable firmware versions can be found on the official
CVE-2022-41742 The NGINX Open Source versions before 1.23.2, 1.22.1, R2 P1, and R1 P1 have a vulnerability in the ngx_http_mp4_module module that might allow a local attacker to execute arbitrary code.
The attacker must be able to serve the malicious file to the victim via HTTP. The following example demonstrates the attack. In the following example,
Episode
00:00:00
00:00:00