Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.
// weekly digest
// weekly digest
// weekly digest
2022-04-04 00:00 UTC 2022-04-10 23:59 UTC
// total
0
// critical
0
// high
0
// medium
0
// low
0
// new kev
7
// top critical
No CRITICAL CVEs published this week.
// top high
No HIGH CVEs published this week.
// new kev additions
Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.
The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.
Sudo contains an off-by-one error that can result in a heap-based buffer overflow, which allows for privilege escalation.
macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory.
Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding.
macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges.
A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.