CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2022-4338 – openvswitch: Integer Underflow in Organization Specific TLV
https://notcve.org/view.php?id=CVE-2022-4338
An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch. • https://github.com/openvswitch/ovs/pull/405 https://mail.openvswitch.org/pipermail/ovs-dev/2022-December/400596.html https://security.gentoo.org/glsa/202311-16 https://www.debian.org/security/2023/dsa-5319 https://www.openwall.com/lists/oss-security/2022/12/21/4 https://access.redhat.com/security/cve/CVE-2022-4338 https://bugzilla.redhat.com/show_bug.cgi?id=2155381 • CWE-125: Out-of-bounds Read CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21765 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21765
Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la cola de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21765 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-22895
https://notcve.org/view.php?id=CVE-2023-22895
The bzip2 crate before 0.4.4 for Rust allow attackers to cause a denial of service via a large file that triggers an integer overflow in mem.rs. • https://crates.io/crates/bzip2/versions https://github.com/alexcrichton/bzip2-rs/pull/86 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MI5SVRSGKBWB2JGDLDVIFY5ZQVDZP6I7 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SQK57GGXJX3AH7KF6S7S3N7JC5QOYUQ7 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UUK2JO25PPA6XBREKJRBLRCD22LKIOLO • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21561 – Microsoft Cryptographic Services Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21561
Microsoft Cryptographic Services Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de los servicios criptográficos de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21561 • CWE-190: Integer Overflow or Wraparound CWE-269: Improper Privilege Management •
CVSS: 9.1EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21557 – Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21557
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del Protocolo ligero de acceso a directorios (LDAP) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21557 • CWE-190: Integer Overflow or Wraparound CWE-400: Uncontrolled Resource Consumption •