Shodan
Vulnerabilities
Vulnerable Software
Fedoraproject:  Security Vulnerabilities
CVE-2022-2867
libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-08-17
CVE-2022-2868
libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-08-17
CVE-2022-2869
libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file with tiffcrop. Triggering this flaw could cause a crash or potentially further exploitation.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-08-17
CVE-2020-14394
An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the QEMU process on the host, resulting in a denial of service.
CVSS Score
3.2
EPSS Score
0.0
Published
2022-08-17
CVE-2022-2862
Use After Free in GitHub repository vim/vim prior to 9.0.0221.
CVSS Score
7.6
EPSS Score
0.001
Published
2022-08-17
CVE-2022-2849
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-17
CVE-2022-2845
Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218.
CVSS Score
7.8
EPSS Score
0.006
Published
2022-08-17
CVE-2022-2817
Use After Free in GitHub repository vim/vim prior to 9.0.0213.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-15
CVE-2022-2816
Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-08-15
CVE-2022-38223
There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-08-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved