Monthly Archive: January 2022

kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace. Date published : 2022-01-29 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HSR3AI2IQGRKZCHNKF6S25JGDKUEAWWL/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VVSZKUJAZ2VN6LJ35J2B6YD6BOPQTU3B/

Adenza AxiomSL ControllerView through 10.8.1 is vulnerable to user enumeration. An attacker can identify valid usernames on the platform because a failed login attempt produces a different error message when the username is valid....

Adenza AxiomSL ControllerView through 10.8.1 allows redirection for SSO login URLs. Date published : 2022-01-29 https://github.com/jdordonezn/CVE-2022-22919/issues/1

Signiant Manager+Agents before 15.1 allows XML External Entity (XXE) attacks. Date published : 2022-01-29 https://help.signiant.com/flight-deck/general/release-notes-15-1 Security

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW. Date published : 2022-01-29 https://jira.mariadb.org/browse/MDEV-25631

save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery. Date published : 2022-01-29 https://jira.mariadb.org/browse/MDEV-25630

get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY. Date published : 2022-01-29 https://jira.mariadb.org/browse/MDEV-25629

A Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs. Date published : 2022-01-28 https://cve.naver.com/detail/cve-2022-24071

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability discovered in Ultimate Reviews WordPress plugin (versions

The comment function in YzmCMS v6.3 was discovered as being able to be operated concurrently, allowing attackers to create an unusually large number of comments. Date published : 2022-01-28 https://github.com/yzmcms/yzmcms/issues/61

YzmCMS v6.3 was discovered to contain a Cross-Site Request Forgey (CSRF) via the component /yzmcms/comment/index/init.html. Date published : 2022-01-28 https://github.com/yzmcms/yzmcms/issues/60

YzmCMS v6.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily delete user accounts via /admin/admin_manage/delete. Date published : 2022-01-28 https://github.com/yzmcms/yzmcms/issues/59

Zoho ManageEngine Desktop Central before 10.1.2137.10 allows an authenticated user to change any user’s login password. Date published : 2022-01-28 https://www.manageengine.com/products/desktop-central/privilege-escalation-vulnerability.html

There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting environments, local attacker is able to perform specific operation to exploit this vulnerability. Exploitation may cause the attacker to obtain...