CVE-2022-0504
published 2022-02-08CVE-2022-0504: Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
PriorityP431medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
1.15%
62.9th percentile
Generation of Error Message Containing Sensitive Information in Packagist microweber/microweber prior to 1.2.11.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microweber | microweber | < 1.2.11 | 1.2.11 |
| microweber | microweber | 0 – 1.2.10 | — |
| microweber | microweber_microweber | >= unspecified < 1.2.11 | 1.2.11 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Generation of Error Message Containing Sensitive Information in microweber
ghsa·2022-02-09
CVE-2022-0504 [MEDIUM] CWE-209 Generation of Error Message Containing Sensitive Information in microweber
Generation of Error Message Containing Sensitive Information in microweber
microweber version 1.2.10 and prior may generate an error message containing sensitive information.
OSV
Generation of Error Message Containing Sensitive Information in microweber
osv·2022-02-09
CVE-2022-0504 [MEDIUM] Generation of Error Message Containing Sensitive Information in microweber
Generation of Error Message Containing Sensitive Information in microweber
microweber version 1.2.10 and prior may generate an error message containing sensitive information.
Red Hat
kernel: mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING
vendor_redhat·2025-10-01·CVSS 5.5
CVE-2022-50430 [MEDIUM] CWE-820 kernel: mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING
kernel: mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING
In the Linux kernel, the following vulnerability has been resolved:
mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING
vub300_enable_sdio_irq() works with mutex and need TASK_RUNNING here.
Ensure that we mark current as TASK_RUNNING for sleepable context.
[ 77.554641] do not call blocking ops when !TASK_RUNNING; state=1 set at [] sdio_irq_thread+0x17d/0x5b0
[ 77.554652] WARNING: CPU: 2 PID: 1983 at kernel/sched/core.c:9813 __might_sleep+0x116/0x160
[ 77.554905] CPU: 2 PID: 1983 Comm: ksdioirqd/mmc1 Tainted: G OE 6.1.0-rc5 #1
[ 77.554910] Hardware name: Intel(R) Client Systems NUC8i7BEH/NUC8BEB, BIOS BECFL357.86A.0081.2020.0504.1834 05/04/2020
[ 77.554912] RIP: 0010:__might_sleep+0x116/0x160
No detection rules found.
No public exploits indexed.
https://github.com/microweber/microweber/commit/e607e5f745cd99d5c06a7fce16b3577fab8e1250https://huntr.dev/bounties/285ff8a0-a273-4d62-ba01-3e4b4e18467bhttps://github.com/microweber/microweber/commit/e607e5f745cd99d5c06a7fce16b3577fab8e1250https://huntr.dev/bounties/285ff8a0-a273-4d62-ba01-3e4b4e18467b
2022-02-08
Published