-
CVE-2021-23285
•
published on April 18, 2022
Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) version 1.5.0plus205 and all prior versions are vulnerable to reflected Cross-site Scripting vulnerability. This issue affects: Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) all version 1.5.0plus205 and prior versions.
-
CVE-2021-23285
•
published on April 18, 2022
Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) version 1.5.0plus205 and all prior versions are vulnerable to reflected Cross-site Scripting vulnerability. This issue affects: Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) all version 1.5.0plus205 and prior versions.
-
CVE-2022-23975
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to activate any installed plugin.
-
CVE-2022-23975
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to activate any installed plugin.
-
CVE-2022-23975
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to activate any installed plugin.
-
CVE-2022-23975
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to activate any installed plugin.
-
CVE-2022-23976
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).
-
CVE-2022-23976
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).
-
CVE-2022-23976
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).
-
CVE-2022-23976
•
published on April 18, 2022
Cross-Site Request Forgery (CSRF) in Access Demo Importer = 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).
-
CVE-2022-27652
•
published on April 18, 2022
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
-
CVE-2022-27652
•
published on April 18, 2022
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
-
CVE-2022-27652
•
published on April 18, 2022
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
-
CVE-2022-27652
•
published on April 18, 2022
A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
-
CVE-2022-27530
•
published on April 18, 2022
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability may be exploited to execute arbitrary code.
-
CVE-2022-27530
•
published on April 18, 2022
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability may be exploited to execute arbitrary code.
-
CVE-2022-27530
•
published on April 18, 2022
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability may be exploited to execute arbitrary code.
-
CVE-2022-27530
•
published on April 18, 2022
A maliciously crafted TIF or PICT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to write beyond the allocated buffer through Buffer overflow vulnerability. This vulnerability may be exploited to execute arbitrary code.
-
CVE-2022-27529
•
published on April 18, 2022
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the allocated buffer while parsing PICT, BMP, PSD or TIF file. This vulnerability may be exploited to execute arbitrary code.
-
CVE-2022-27529
•
published on April 18, 2022
A maliciously crafted PICT, BMP, PSD or TIF file in Autodesk AutoCAD 2022, 2021, 2020, 2019 may be used to write beyond the allocated buffer while parsing PICT, BMP, PSD or TIF file. This vulnerability may be exploited to execute arbitrary code.