Vuldb Updates

A vulnerability was found in Linux Kernel up to 5.18.2. It has been classified as problematic. The affected element is the function ieee80211_restart_hw. This manipulation causes denial of service. This vulnerability is tracked as CVE-2022-49539. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.17.13/5.18.2. Impacted is an unknown function. The manipulation leads to buffer overflow. This vulnerability is uniquely identified as CVE-2022-49533. The attack can only be initiated within the local network. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.18.2 and classified as problematic. The impacted element is an unknown function of the file drivers/regulator/core.c. This manipulation causes privilege escalation. The identification of this vulnerability is CVE-2022-49528. The attack needs to be done within the local network. There is no exploit available. The affected component should be upgraded.

A vulnerability categorized as problematic has been discovered in Linux Kernel up to 5.10.120/5.15.45/5.17.13/5.18.2 on CPU2. This issue affects the function call_rcu_tasks_rude. The manipulation of the argument cpus_read_[lock/unlock] results in state issue. This vulnerability is reported as CVE-2022-49540. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Sytel Softdial Contact Center. It has been rated as critical. The impacted element is an unknown function of the file /softdial/scheduler/load.php. The manipulation leads to path traversal. This vulnerability is traded as CVE-2025-2493. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Linux Kernel up to 5.10.120/5.15.45/5.17.13/5.18.2. It has been rated as critical. Affected is the function lpfc_sli4_send_seq_to_ulp. Performing manipulation results in memory leak. This vulnerability is reported as CVE-2022-49521. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 5.18.2. It has been declared as problematic. The impacted element is the function pci_disable_device. Such manipulation leads to privilege escalation. This vulnerability is listed as CVE-2022-49525. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.45/5.17.13/5.18.2. Affected by this vulnerability is the function smp_processor_id. Such manipulation leads to stack-based buffer overflow. This vulnerability is referenced as CVE-2022-49537. The attack needs to be initiated within the local network. No exploit is available. You should upgrade the affected component.

A vulnerability was found in pihome-shc PiHome 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /home.php. This manipulation of the argument page_name causes cross site scripting. The identification of this vulnerability is CVE-2025-1742. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as problematic, was found in 274056675 springboot-openai-chatgpt e84f6f5. This issue affects the function deleteChat of the file /api/mjkj-chat/chat/ai/delete/chat of the component Chat History Handler. Such manipulation of the argument chatListId leads to improper access controls. This vulnerability is listed as CVE-2025-2334. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability was found in F5 BIG-IP and classified as problematic. This issue affects some unknown processing of the component Configuration Utility. Executing manipulation can lead to cross site scripting. This vulnerability is registered as CVE-2025-24320. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.53/5.17.13/5.18.2. It has been classified as critical. This affects the function mtk_disp_ovl_irq_handler. This manipulation causes denial of service. This vulnerability is registered as CVE-2022-49506. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability categorized as problematic has been discovered in Linux Kernel up to 5.18.2. Affected by this vulnerability is the function test_bit of the file drivers/net/wireless/ath/ath9k/common.c. Executing manipulation can lead to out-of-bounds read. This vulnerability appears as CVE-2022-49503. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 5.18.2. The affected element is the function fb_deferred_io_mkwrite. Executing manipulation can lead to improper initialization. The identification of this vulnerability is CVE-2022-49511. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.17.13/5.18.2. This affects the function cs35l41_otp_unpack in the library /home/hwang4/build/jammy/jammy/sound/soc/codecs/cs35l41-lib.c. The manipulation results in out-of-bounds read. This vulnerability is identified as CVE-2022-49515. The attack can only be performed from the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.18.2. It has been classified as problematic. Affected by this vulnerability is the function sof_get_control_data. Performing manipulation results in out-of-bounds read. This vulnerability is cataloged as CVE-2022-49518. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability labeled as problematic has been found in Linux Kernel up to 5.15.90/5.18.2. This affects the function release in the library lib/debugobjects.c. The manipulation results in state issue. This vulnerability is known as CVE-2022-49513. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.

A vulnerability was found in Linux Kernel up to 5.10.120/5.15.45/5.17.13/5.18.2. It has been declared as problematic. Affected by this issue is the function ath10k_core_restart. Executing manipulation can lead to double free. This vulnerability is registered as CVE-2022-49519. The attack requires access to the local network. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 5.4.197/5.10.120/5.15.45/5.17.13/5.18.2. This affects the function f2fs_do_zero_range of the file case.c. Performing manipulation results in allocation of resources. This vulnerability is known as CVE-2022-49363. Access to the local network is required for this attack. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 5.10.120/5.15.45/5.17.13/5.18.2. This vulnerability affects the function total_data_blocks of the file fs/f2fs/segment.c. Executing manipulation can lead to allocation of resources. This vulnerability is handled as CVE-2022-49360. The attack can only be done within the local network. There is not any exploit available. Upgrading the affected component is advised.