Vulnerabilities > Incomplete Cleanup

DATE CVE VULNERABILITY TITLE RISK
2023-01-13 CVE-2023-22407 Incomplete Cleanup vulnerability in Juniper Junos
An Incomplete Cleanup vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS).
low complexity
juniper CWE-459
6.5
2022-12-22 CVE-2022-45347 Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as database backend didn't cleanup the database session completely after client authentication failed, which allowed an attacker to execute normal commands by constructing a special MySQL client.
network
low complexity
CWE-459
critical
9.8
2022-11-14 CVE-2022-28764 Incomplete Cleanup vulnerability in Zoom Meetings, Rooms and VDI Windows Meeting Clients
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability.
local
low complexity
zoom CWE-459
3.3
2022-11-10 CVE-2022-39368 Incomplete Cleanup vulnerability in Eclipse Californium
Eclipse Californium is a Java implementation of RFC7252 - Constrained Application Protocol for IoT Cloud services.
network
low complexity
eclipse CWE-459
8.2
2022-11-01 CVE-2022-42310 Incomplete Cleanup vulnerability in multiple products
Xenstore: Guests can create orphaned Xenstore nodes By creating multiple nodes inside a transaction resulting in an error, a malicious guest can create orphaned nodes in the Xenstore data base, as the cleanup after the error will not remove all nodes already created.
local
low complexity
xen debian fedoraproject CWE-459
5.5
2022-11-01 CVE-2022-42320 Incomplete Cleanup vulnerability in multiple products
Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid.
local
high complexity
xen debian fedoraproject CWE-459
7.0
2022-08-31 CVE-2022-1552 Incomplete Cleanup vulnerability in Postgresql
A flaw was found in PostgreSQL.
network
low complexity
postgresql CWE-459
8.8
2022-08-26 CVE-2022-0171 Incomplete Cleanup vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux redhat debian CWE-459
5.5
2022-08-23 CVE-2022-37428 Incomplete Cleanup vulnerability in multiple products
PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception, leading to a denial of service (daemon crash) via a DNS query that leads to an answer with specific properties.
network
low complexity
powerdns fedoraproject CWE-459
6.5
2022-08-18 CVE-2022-26074 Incomplete Cleanup vulnerability in Intel Server Platform Services Firmware
Incomplete cleanup in a firmware subsystem for Intel(R) SPS before versions SPS_E3_04.08.04.330.0 and SPS_E3_04.01.04.530.0 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-459
4.4