VIR Vulnerability Intelligence Relay

CVEs from 2022

5,373 normalized CVEs published or assigned in this year.

Total
5,373
critical
critical 88
high
high 1,220
medium
medium 938
low
low 24
% Critical
1.6%
% with KEV
2.4%
% with exploit
3.3%

Top vendors

Top products

  • jdk 116
  • jre 109
  • openjdk 100
  • zulu 82
  • graalvm 74
  • cloud_secure_agent 35
  • oncommand_insight 34
  • cloud_insights_acquisition_unit 34

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2022-4917 unknown Incorrect security UI in Notifications in Google Chrome on Android prior to 103.0.5060.53 allowed a remote attacker to obscure the full screen notification via a crafted HTML page. (Chromium security…
CVE-2022-4908 unknown Inappropriate implementation in iFrame Sandbox in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2022-4914 unknown Heap buffer overflow in PrintPreview in Google Chrome prior to 104.0.5112.79 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a cra…
CVE-2022-4919 unknown Use after free in Base Internals in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
CVE-2022-4923 unknown Inappropriate implementation in Omnibox in Google Chrome prior to 99.0.4844.51 allowed an attacker in a privileged network position to perform a man-in-the-middle attack via malicious network traffic…
CVE-2022-4925 unknown Insufficient validation of untrusted input in QUIC in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to perform header splitting via malicious network traffic. (Chromium security sever…
CVE-2022-49083 unknown In the Linux kernel, the following vulnerability has been resolved: iommu/omap: Fix regression in probe for NULL pointer dereference Commit 3f6634d997db ("iommu: Use right way to retrieve iommu_ops…
CVE-2022-49084 unknown In the Linux kernel, the following vulnerability has been resolved: qede: confirm skb is allocated before using qede_build_skb() assumes build_skb() always works and goes straight to skb_reserve().…
CVE-2022-49095 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() The error handling path of the probe releases a resource that is not…
CVE-2022-49085 unknown In the Linux kernel, the following vulnerability has been resolved: drbd: Fix five use after free bugs in get_initial_state In get_initial_state, it calls notify_initial_state_done(skb,..) if cb->a…
CVE-2022-49088 unknown In the Linux kernel, the following vulnerability has been resolved: dpaa2-ptp: Fix refcount leak in dpaa2_ptp_probe This node pointer is returned by of_find_compatible_node() with refcount incremen…
CVE-2022-49089 unknown In the Linux kernel, the following vulnerability has been resolved: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition The documentation of the function rvt_error_qp says both …
CVE-2022-0213 unknown vim is vulnerable to Heap-based Buffer Overflow
CVE-2022-49091 unknown In the Linux kernel, the following vulnerability has been resolved: drm/imx: Fix memory leak in imx_pd_connector_get_modes Avoid leaking the display mode variable if of_get_drm_display_mode fails. …
CVE-2022-0156 unknown vim is vulnerable to Use After Free
CVE-2022-0128 unknown vim is vulnerable to Out-of-bounds Read
CVE-2022-0319 unknown Out-of-bounds Read in vim/vim prior to 8.2.
CVE-2022-0158 unknown vim is vulnerable to Heap-based Buffer Overflow
CVE-2022-49094 unknown In the Linux kernel, the following vulnerability has been resolved: net/tls: fix slab-out-of-bounds bug in decrypt_internal The memory size of tls_ctx->rx.iv for AES128-CCM is 12 setting in tls_set…
CVE-2022-0351 unknown Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2.
CVE-2022-0368 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-0393 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-0407 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-49126 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix memory leaks Fix memory leaks related to operational reply queue's memory segments which are not getting freed …
CVE-2022-49096 unknown In the Linux kernel, the following vulnerability has been resolved: net: sfc: add missing xdp queue reinitialization After rx/tx ring buffer size is changed, kernel panic occurs when it acts XDP_TX…
CVE-2022-0408 unknown Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-49102 unknown In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix possible memory leak in MMU DR fini This patch fixes what seems to be copy paste error. We will have a memory le…
CVE-2022-0417 unknown Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2.
CVE-2022-0443 unknown Use After Free in GitHub repository vim/vim prior to 8.2.
CVE-2022-0572 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-0629 unknown Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-0696 unknown NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.
CVE-2022-49099 unknown In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix initialization of device object in vmbus_device_register() Initialize the device's dma_{mask,parms} point…
CVE-2022-0714 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436.
CVE-2022-0729 unknown Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4440.
CVE-2022-49100 unknown In the Linux kernel, the following vulnerability has been resolved: virtio_console: eliminate anonymous module_init & module_exit Eliminate anonymous module_init() and module_exit(), which can lead…
CVE-2022-1381 unknown global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible …
CVE-2022-49103 unknown In the Linux kernel, the following vulnerability has been resolved: NFSv4.2: fix reference count leaks in _nfs42_proc_copy_notify() [You don't often get email from xiongx18@fudan.edu.cn. Learn why …
CVE-2022-1616 unknown Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote ex…
CVE-2022-1619 unknown Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote ex…
CVE-2022-49104 unknown In the Linux kernel, the following vulnerability has been resolved: staging: vchiq_core: handle NULL result of find_service_by_handle In case of an invalid handle the function find_servive_by_handl…
CVE-2022-1620 unknown NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allow…
CVE-2022-1720 unknown Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.
CVE-2022-1674 unknown NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allow…
CVE-2022-49105 unknown In the Linux kernel, the following vulnerability has been resolved: staging: wfx: fix an error handling in wfx_init_common() One error handler of wfx_init_common() return without calling ieee80211_…
CVE-2022-1725 unknown NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959.
CVE-2022-1733 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968.
CVE-2022-1735 unknown Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969.
CVE-2022-1769 unknown Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.
CVE-2022-49106 unknown In the Linux kernel, the following vulnerability has been resolved: staging: vchiq_arm: Avoid NULL ptr deref in vchiq_dump_platform_instances vchiq_get_state() can return a NULL pointer. So handle …
CVE-2022-1796 unknown Use After Free in GitHub repository vim/vim prior to 8.2.4979.
CVE-2022-1851 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-1886 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-1898 unknown Use After Free in GitHub repository vim/vim prior to 8.2.
CVE-2022-2208 unknown NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.
CVE-2022-49108 unknown In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: Fix memory leaks on probe Handle the error branches to free memory where required. Addresses-Coverity-ID: 1491825…
CVE-2022-1942 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-1968 unknown Use After Free in GitHub repository vim/vim prior to 8.2.
CVE-2022-2124 unknown Buffer Over-read in GitHub repository vim/vim prior to 8.2.
CVE-2022-2042 unknown Use After Free in GitHub repository vim/vim prior to 8.2.
CVE-2022-2125 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-2129 unknown Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
CVE-2022-2183 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-49110 unknown In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: revisit gc autotuning as of commit 4608fdfc07e1 ("netfilter: conntrack: collect all entries in one cycle") …
CVE-2022-2175 unknown Buffer Over-read in GitHub repository vim/vim prior to 8.2.
CVE-2022-2182 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-2206 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.
CVE-2022-2207 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVE-2022-2231 unknown NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.
CVE-2022-2210 unknown Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.
CVE-2022-49112 unknown In the Linux kernel, the following vulnerability has been resolved: mt76: fix monitor mode crash with sdio driver mt7921s driver may receive frames with fragment buffers. If there is a CTS packet r…
CVE-2022-2257 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.
CVE-2022-2285 unknown Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.
CVE-2022-49113 unknown In the Linux kernel, the following vulnerability has been resolved: powerpc/secvar: fix refcount leak in format_show() Refcount leak will happen when format_show returns failure in multiple cases. …
CVE-2022-49115 unknown In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix misused goto label Fix a misused goto label jump since that can result in a memory leak.
CVE-2022-2264 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.
CVE-2022-2284 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.
CVE-2022-2286 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.
CVE-2022-2287 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.
CVE-2022-2288 unknown Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.
CVE-2022-2522 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061.
CVE-2022-2816 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212.
CVE-2022-2344 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045.
CVE-2022-2289 unknown Use After Free in GitHub repository vim/vim prior to 9.0.
CVE-2022-49117 unknown In the Linux kernel, the following vulnerability has been resolved: mips: ralink: fix a refcount leak in ill_acc_of_setup() of_node_put(np) needs to be called when pdev == NULL.
CVE-2022-2304 unknown Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.
CVE-2022-2343 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044.
CVE-2022-49118 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: hisi_sas: Free irq vectors in order for v3 HW If the driver probe fails to request the channel IRQ or fatal IRQ, the driver…
CVE-2022-2345 unknown Use After Free in GitHub repository vim/vim prior to 9.0.0046.
CVE-2022-2571 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101.
CVE-2022-2845 unknown Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218.
CVE-2022-2580 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102.
CVE-2022-2581 unknown Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104.
CVE-2022-49119 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix memory leak in pm8001_chip_fw_flash_update_req() In pm8001_chip_fw_flash_update_build(), if pm8001_chip_fw_flas…
CVE-2022-2598 unknown Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100.
CVE-2022-49120 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix task leak in pm8001_send_abort_all() In pm8001_send_abort_all(), make sure to free the allocated sas task if pm…
CVE-2022-2817 unknown Use After Free in GitHub repository vim/vim prior to 9.0.0213.
CVE-2022-2819 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0211.
CVE-2022-49121 unknown In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix tag leaks on error In pm8001_chip_set_dev_state_req(), pm8001_chip_fw_flash_update_req(), pm80xx_chip_phy_ctl_r…
CVE-2022-2849 unknown Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220.