Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Date published : 2022-05-12 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00654.html
A privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to increased privileges. An attacker can send an HTTP request to trigger...
Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Date published : 2022-05-12 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00617.html
An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.7.7. A specially-crafted PE file can trigger this vulnerability to cause denial of service and termination of malware scan....
Improper input validation for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable denial of service via local access. Date published : 2022-05-12 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00616.html
Improper access control for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Date published : 2022-05-12 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00616.html
Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an authenticated user to potentially enable escalation of privilege via local access. Date published : 2022-05-12 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00661.html
Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications. Date published : 2022-05-12...
Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access...
Reflected Xss using url based payload in GitHub repository neorazorx/facturascripts prior to 2022.07. Xss can use to steal user’s cookies which lead to Account takeover or do any malicious activity in victim’s browser Date...
Authentication Bypass Using an Alternate Path or Channel in GitHub repository requarks/wiki prior to 2.5.281. User can get root user permissions Date published : 2022-05-12 https://huntr.dev/bounties/591b11e1-7504-4a96-99c6-08f2b419e767 https://github.com/requarks/wiki/commit/78d02dc8e5d103d248e5d7632bf7a6facdf4264c
NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows attackers to cause a denial of service (application crash) via...
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository eventsource/eventsource prior to v2.0.2. Date published : 2022-05-12 https://huntr.dev/bounties/dc9e467f-be5d-4945-867d-1044d27e9b8e https://github.com/eventsource/eventsource/commit/10ee0c4881a6ba2fe65ec18ed195ac35889583c4
Sensitive Data Exposure Due To Insecure Storage Of Profile Image in GitHub repository polonel/trudesk prior to v1.2.1. Date published : 2022-05-12 https://huntr.dev/bounties/ff878be9-563a-4d0e-99c1-fc3c767f6d3e https://github.com/polonel/trudesk/commit/097b4823935c4fa524e71ab2dd107cf2056922b0