Vulnerabilities > Netapp > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-21 | CVE-2022-3597 | Out-of-bounds Write vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. | 6.5 |
2022-10-21 | CVE-2022-3598 | Out-of-bounds Write vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. | 6.5 |
2022-10-21 | CVE-2022-3599 | Out-of-bounds Read vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. | 6.5 |
2022-10-21 | CVE-2022-3626 | Out-of-bounds Write vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. | 6.5 |
2022-10-21 | CVE-2022-3627 | Out-of-bounds Write vulnerability in multiple products LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. | 6.5 |
2022-10-18 | CVE-2022-21589 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). | 4.3 |
2022-10-18 | CVE-2022-21592 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). | 4.3 |
2022-10-18 | CVE-2022-21594 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). | 4.9 |
2022-10-18 | CVE-2022-21595 | Vulnerability in the MySQL Server product of Oracle MySQL (component: C API). | 4.4 |
2022-10-18 | CVE-2022-21599 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). | 4.9 |