CVE-2022-4418
published 2023-05-18CVE-2022-4418: Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Cyber Protect Home Office (Windows)…
PriorityP338high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.12%
2.2th percentile
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40208.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| acronis | acronis_cyber_protect_home_office | >= unspecified < 40208 | 40208 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9v6r-g5cx-h6fg: Local privilege escalation due to unrestricted loading of unsigned libraries
ghsa_unreviewed·2023-05-18
CVE-2022-4418 [HIGH] CWE-347 GHSA-9v6r-g5cx-h6fg: Local privilege escalation due to unrestricted loading of unsigned libraries
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 40208.
Red Hat
vim: Use of Out-of-range Pointer Offset in vim
vendor_redhat·2022-02-20·CVSS 7.8
CVE-2022-0685 [HIGH] CWE-125 vim: Use of Out-of-range Pointer Offset in vim
vim: Use of Out-of-range Pointer Offset in vim
Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418.
A flaw was found in vim. The vulnerability occurs due to a crash when using a special multi-byte character and leads to an out-of-range vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution.
Mitigation: Untrusted vim scripts with -s [scriptin] are not recommended to run.
Package: vim (Red Hat Enterprise Linux 6) - Not affected
Package: vim (Red Hat Enterprise Linux 7) - Not affected
Package: vim (Red Hat Enterprise Linux 8) - Not affected
Package: vim (Red Hat Enterprise Linux 9) - Not affected
Package: vim (Red Hat Virtualization 4) - Not affected
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-05-18
Published