CVE-2022-1117

HIGH Year: 2022
CVSS v3 Score
8.4
High
Weakness Type
CWE-552
View all →

Vulnerability Description

A vulnerability was found in fapolicyd. The vulnerability occurs due to an assumption on how glibc names the runtime linker, a build time regular expression may not correctly detect the runtime linker. The consequence is that the pattern detection for applications launched by the run time linker may fail to detect the pattern and allow execution.

Related Vulnerabilities

CVE-2024-34066

HIGH
CVSS:8.4(High)

Pterodactyl wings is the server control plane for Pterodactyl Panel. If the Wings token is leaked either by viewing the node configuration or posting it accidentally somewhere, an attacker can use it ...

CWE-5522024

CVE-2024-12917

HIGH
CVSS:8.3(High)

Files or Directories Accessible to External Parties vulnerability in Agito Computer Health4All allows Exploiting Incorrectly Configured Access Control Security Levels, Authentication Abuse.This issue ...

CWE-5522024

CVE-2021-32833

HIGH
CVSS:8.6(High)

Emby Server is a personal media server with apps on many devices. In Emby Server on Windows there is a set of arbitrary file read vulnerabilities. This vulnerability is known to exist in version 4.6.4...

CWE-5522021

CVE-2025-26525

HIGH
CVSS:8.6(High)

Insufficient sanitizing in the TeX notation filter resulted in an arbitrary file read risk on sites where pdfTeX is available (such as those with TeX Live installed).

CWE-5522025

CVE-2024-51542

HIGH
CVSS:8.2(High)

Configuration Download vulnerabilities allow access to dependency configuration information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CWE-5522024

CVE-2021-20182

HIGH
CVSS:8.8(High)

A privilege escalation flaw was found in openshift4/ose-docker-builder. The build container runs with high privileges using a chrooted environment instead of runc. If an attacker can gain access to th...

CWE-5522021