CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-3037 – Use After Free in vim/vim
https://notcve.org/view.php?id=CVE-2022-3037
30 Aug 2022 — Use After Free in GitHub repository vim/vim prior to 9.0.0322. Un Uso de Memoria Previamente Liberada en el repositorio GitHub vim/vim versiones anteriores a 9.0.0322. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. • https://github.com/vim/vim/commit/4f1b083be43f351bc107541e7b0c9655a5d2c0bb • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 1CVE-2022-38784 – poppler: integer overflow in JBIG2 decoder using malformed files
https://notcve.org/view.php?id=CVE-2022-38784
30 Aug 2022 — Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf. Poppler versiones anteriores a 22.08.0 incluyéndola, contiene un desbordamiento de enteros en el descodificador JBIG2 (la función JBIG2Stream::readTextRegionSeg() en el archivo JBIGSt... • http://www.openwall.com/lists/oss-security/2022/09/02/11 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-0367
https://notcve.org/view.php?id=CVE-2022-0367
29 Aug 2022 — A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c. Se encontró un fallo de desbordamiento de búfer en la región heap de la memoria en la función modbus_reply() en el archivo src/modbus.c • https://bugzilla.redhat.com/show_bug.cgi?id=2045571 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-35014 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35014
29 Aug 2022 — Advancecomp v2.3 contains a segmentation fault. Advancecomp versión v2.3, contiene un fallo de segmentación It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into opening a specially crafted MNG file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service. It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on ZIP file. I... • https://drive.google.com/file/d/1mglfof2gR9Xoi5OWS9x0-jJ7cSIJA5i6/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35015
https://notcve.org/view.php?id=CVE-2022-35015
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila por medio de la función le_uint32_read en el archivo /lib/endianrw.h • https://drive.google.com/file/d/1pxNOlyl5mWXdVwkmCD4ZuXEPxI3PZAac/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35016
https://notcve.org/view.php?id=CVE-2022-35016
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila • https://drive.google.com/file/d/1oWVhoJJih6-pgbvrZsx5oFUtv-vgR0fF/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-35017
https://notcve.org/view.php?id=CVE-2022-35017
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila • https://drive.google.com/file/d/13WAtJtCUBH4LW5MBulyuhLFq2HQq4e_Q/view?usp=sharing • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35018 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35018
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a segmentation fault. Se ha detectado que Advancecomp versión v2.3, contiene un fallo de segmentación It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into opening a specially crafted MNG file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service. It was discovered that AdvanceCOMP did not properly manage memory while perf... • https://drive.google.com/file/d/1ChqmPdrjId87582a-o5ogWyEI8goRVWJ/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35019
https://notcve.org/view.php?id=CVE-2022-35019
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a segmentation fault. Se ha detectado que Advancecomp versión v2.3, contiene un fallo de segmentación • https://drive.google.com/file/d/1n1hltvw-kqpzZ50L6d7RGGNagwbUp0Z2/view?usp=sharing •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 2CVE-2022-35020 – Ubuntu Security Notice USN-5838-1
https://notcve.org/view.php?id=CVE-2022-35020
29 Aug 2022 — Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc. Se ha detectado que Advancecomp versión v2.3, contiene un desbordamiento del búfer de la pila por medio del componente __interceptor_memcpy en el archivo /sanitizer_common/sanitizer_common_interceptors.inc It was discovered that AdvanceCOMP did not properly manage memory while performing read operations on MNG file. If a user were tricked into openi... • https://drive.google.com/file/d/1ScTmAEmHSHvmyDnELYV1DzQTAAAm7XS9/view?usp=sharing • CWE-787: Out-of-bounds Write •