An issue was discovered in the Linux kernel 5.10.x before 5.10.155. A use-after-free in io_sqpoll_wait_sq in fs/io_uring.c allows an attacker to crash the kernel, resulting in denial of service. finish_wait can be skipped. An attack can occur in some situations by forking a process and then quickly terminating it. NOTE: later kernel versions, such as the 5.15 longterm series, substantially changed the implementation of io_sqpoll_wait_sq.
Max CVSS
5.5
EPSS Score
0.04%
Published
2022-12-23
Updated
2023-01-04
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl, related to use of SMB2_QUERY_INFO_HE after a malformed SMB2_SET_INFO_HE command.
Max CVSS
8.8
EPSS Score
0.49%
Published
2022-12-23
Updated
2023-05-16
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT.
Max CVSS
9.8
EPSS Score
0.61%
Published
2022-12-23
Updated
2023-05-16
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_CHANNEL_LIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when parsing the operating channel attribute from Wi-Fi management frames.
Max CVSS
7.8
EPSS Score
0.05%
Published
2022-12-18
Updated
2023-04-11
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_OPER_CHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the channel list attribute from Wi-Fi management frames.
Max CVSS
7.8
EPSS Score
0.05%
Published
2022-12-18
Updated
2023-05-12
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the list of operating channels from Wi-Fi management frames.
Max CVSS
7.8
EPSS Score
0.04%
Published
2022-12-18
Updated
2023-05-12
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that causes a url_canonize2 heap-based buffer over-read because of an off-by-one error.
Max CVSS
7.5
EPSS Score
0.32%
Published
2022-12-18
Updated
2022-12-22
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey2 parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlEn_5g parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey4 parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wrlPwd_5g parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security_5g parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the ssid parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepkey1 parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the SYSPS parameter at /goform/SysToolChangePwd.
Max CVSS
7.5
EPSS Score
0.08%
Published
2022-12-30
Updated
2023-01-05
Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepauth parameter at /goform/WifiBasicSet.
Max CVSS
9.8
EPSS Score
0.19%
Published
2022-12-30
Updated
2023-01-05
Mozilla developers Timothy Nikkel, Ashley Hale, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 106.
Max CVSS
8.8
EPSS Score
0.13%
Published
2022-12-22
Updated
2023-01-04
Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 106. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.<br />*Note*: This advisory was added on December 13th, 2022 after discovering it was inadvertently left out of the original advisory. The fix was included in the original release of Firefox 107. This vulnerability affects Firefox < 107.
Max CVSS
8.8
EPSS Score
0.13%
Published
2022-12-22
Updated
2023-01-04
A use-after-free in WebGL extensions could have led to a potentially exploitable crash. This vulnerability affects Firefox < 107, Firefox ESR < 102.6, and Thunderbird < 102.6.
Max CVSS
9.8
EPSS Score
0.28%
Published
2022-12-22
Updated
2023-05-03
An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash. *Note*: This advisory was added on December 13th, 2022 after we better understood the impact of the issue. The fix was included in the original release of Firefox 106. This vulnerability affects Firefox < 106, Firefox ESR < 102.6, and Thunderbird < 102.6.
Max CVSS
8.8
EPSS Score
0.24%
Published
2022-12-22
Updated
2023-09-13
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!