Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2022-34169

CVSSv4: NA | CVSSv3: 7.5 | CVSSv2: NA | VMScore: 850 | EPSS: 0.00381 | KEV: Not Included
Published: 19/07/2022 Updated: 21/11/2024

Vulnerability Summary

It exists that OpenJDK incorrectly handled converting certain object arguments into their textual representations. An attacker could possibly use this issue to cause a denial of service. This issue was fixed in OpenJDK 8 and OpenJDK 18. USN-5388-1 and USN-5388-2 addressed this issue in OpenJDK 11 and OpenJDK 17. (CVE-2022-21434)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache xalan-java

debian debian linux 10.0

debian debian linux 11.0

oracle graalvm 20.3.6

oracle graalvm 21.3.2

oracle graalvm 22.1.0

oracle jdk 1.7.0

oracle jdk 1.8.0

oracle jdk 11.0.15.1

oracle jdk 17.0.3.1

oracle jdk 18.0.1.1

oracle jre 1.7.0

oracle jre 1.8.0

oracle jre 11.0.15.1

oracle jre 17.0.3.1

oracle jre 18.0.1.1

oracle openjdk

oracle openjdk 7

oracle openjdk 8

oracle openjdk 18

fedoraproject fedora 35

fedoraproject fedora 36

netapp 7-mode transition tool -

netapp active iq unified manager -

netapp cloud insights acquisition unit -

netapp cloud secure agent -

netapp hci management node -

netapp oncommand insight -

netapp solidfire -

netapp hci compute node -

azul zulu 6.47

azul zulu 7.54

azul zulu 8.62

azul zulu 11.56

azul zulu 13.48

azul zulu 15.40

azul zulu 17.34

azul zulu 18.30

Vendor Advisories

Debian CVElist Bug Report Logs: libxalan2-java: CVE-2022-34169
Debian Bug report logs - #1015860 libxalan2-java: CVE-2022-34169 Package: src:libxalan2-java; Maintainer for src:libxalan2-java is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 22 Jul 2022 15:21:01 UTC Severity: grave Tags: security ...
Ubuntu Security Notice: USN-5546-2: OpenJDK 8 vulnerabilities
Several security issues were fixed in OpenJDK 8 ...
Ubuntu Security Notice: USN-5546-1: OpenJDK vulnerabilities
Several security issues were fixed in OpenJDK ...
Debian Security Advisories: DSA-5188-1 openjdk-11 -- security update
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in the execution of arbitrary Java bytecode or the bypass of the Java sandbox For the oldstable distribution (buster), these problems have been fixed in version 11016+8-1~deb10u1 For the stable distribution (bullseye), these problems have been fixed in ve ...
Debian Security Advisories: DSA-5192-1 openjdk-17 -- security update
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in the execution of arbitrary Java bytecode or the bypass of the Java sandbox For the stable distribution (bullseye), this problem has been fixed in version 1704+8-1~deb11u1 We recommend that you upgrade your openjdk-17 packages For the detailed security ...
Debian Security Advisories: DSA-5256-1 bcel -- security update
The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode In Debian the vulnerable code is in the bcel source package For the stable distribution (bullseye), th ...
Amazon Linux AMI: ALAS-2022-1633
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization) Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11013, 1701; Oracle GraalVM Enterprise Edition: 2034 and 2130 Difficult to exploit vulnerability allows unauthenticated attacker with network acce ...
Amazon Linux AMI: ALAS-2022-1631
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization) Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11013, 1701; Oracle GraalVM Enterprise Edition: 2034 and 2130 Difficult to exploit vulnerability allows unauthenticated attacker with network acce ...
Red Hat: Important: java-17-openjdk security, bug fix, and enhancement update
概述 Important: java-17-openjdk security, bug fix, and enhancement update 类型/严重性 Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems 标题 An update for java-17-openjdk is now available for Red Hat Enterprise Linux 8Red Hat Product ...
Red Hat: Important: OpenJDK 8u342 security update for Portable Linux Builds
Synopsis Important: OpenJDK 8u342 security update for Portable Linux Builds Type/Severity Security Advisory: Important Topic The Red Hat build of OpenJDK 8 (java-180-openjdk) is now available for portable LinuxRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVS ...
Red Hat: Important: OpenJDK 8u342 Windows builds release and security update
Synopsis Important: OpenJDK 8u342 Windows builds release and security update Type/Severity Security Advisory: Important Topic The Red Hat build of OpenJDK 8 (java-180-openjdk) is now available for WindowsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Red Hat: Important: java-1.8.0-openjdk security update
Synopsis Important: java-180-openjdk security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsR ...
Red Hat: Important: OpenJDK 11.0.16 Security Update for Portable Linux Builds
概述 Important: OpenJDK 11016 Security Update for Portable Linux Builds 类型/严重性 Security Advisory: Important 标题 The Red Hat Build of OpenJDK 11 (java-11-openjdk) is now available for portable LinuxRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...
Red Hat: Important: java-17-openjdk security, bug fix, and enhancement update
Synopsis Important: java-17-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-17-openjdk is now available for Red Hat Enterprise Linux 9Red Hat Product S ...
Red Hat: Important: java-11-openjdk security update
Synopsis Important: java-11-openjdk security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat ...
Red Hat: Important: java-11-openjdk security, bug fix, and enhancement update
Synopsis Important: java-11-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 9Red Hat Product S ...
Red Hat: Important: OpenJDK 17.0.4 security update for Windows Builds
概述 Important: OpenJDK 1704 security update for Windows Builds 类型/严重性 Security Advisory: Important 标题 The Red Hat build of OpenJDK 17 (java-17-openjdk) is now available for WindowsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score ...
Red Hat: Important: java-11-openjdk security, bug fix, and enhancement update
Synopsis Important: java-11-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 7Red Hat Product S ...
Red Hat: Important: java-1.8.0-openjdk security, bug fix, and enhancement update
Synopsis Important: java-180-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 8Red Hat Pro ...
Red Hat: Important: java-1.8.0-openjdk security, bug fix, and enhancement update
Synopsis Important: java-180-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 7Red Hat Pro ...
Red Hat: Important: java-1.8.0-openjdk security and bug fix update
Synopsis Important: java-180-openjdk security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 84 Extended Update Support ...
Red Hat: Important: OpenJDK 11.0.16 security update for Windows Builds
概述 Important: OpenJDK 11016 security update for Windows Builds 类型/严重性 Security Advisory: Important 标题 The Red Hat Build of OpenJDK 11 (java-11-openjdk) is now available for WindowsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base scor ...
Red Hat: Important: java-1.8.0-openjdk security, bug fix, and enhancement update
Synopsis Important: java-180-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 9Red Hat Pro ...
Red Hat: Important: java-11-openjdk security, bug fix, and enhancement update
Synopsis Important: java-11-openjdk security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 8Red Hat Product S ...
Red Hat: Important: java-1.8.0-openjdk security update
Synopsis Important: java-180-openjdk security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-180-openjdk is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Pro ...
Red Hat: Important: java-11-openjdk security update
Synopsis Important: java-11-openjdk security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product S ...
Red Hat: Important: java-11-openjdk security and bug fix update
Synopsis Important: java-11-openjdk security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for java-11-openjdk is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed H ...
Red Hat: Important: OpenJDK 17.0.4 Security Update for Portable Linux Builds
概述 Important: OpenJDK 1704 Security Update for Portable Linux Builds 类型/严重性 Security Advisory: Important 标题 The Red Hat build of OpenJDK 17 (java-17-openjdk) is now available for portable LinuxRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CV ...
Red Hat: Important: Release of OpenShift Serverless 1.24.0
Synopsis Important: Release of OpenShift Serverless 1240 Type/Severity Security Advisory: Important Topic Release of OpenShift Serverless 1240The References section contains CVE links providing detailed severity ratingsfor each vulnerability Ratings are based on a Common Vulnerability ScoringSystem (CVSS) base score Description Versio ...
Red Hat: Moderate: Openshift Logging Bug Fix and security update Release (5.2.13)
Synopsis Moderate: Openshift Logging Bug Fix and security update Release (5213) Type/Severity Security Advisory: Moderate Topic Openshift Logging Bug Fix Release (5213)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed seve ...
Red Hat: Moderate: Openshift Logging Bug Fix and security update Release (5.3.10)
Synopsis Moderate: Openshift Logging Bug Fix and security update Release (5310) Type/Severity Security Advisory: Moderate Topic Openshift Logging Bug Fix Release (5310)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed seve ...
Red Hat: Moderate: OpenShift Container Platform 4.6.61 security and extras update
Synopsis Moderate: OpenShift Container Platform 4661 security and extras update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4661 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Conta ...
Red Hat: Moderate: OpenShift Container Platform 4.7.56 security and bug fix update
Synopsis Moderate: OpenShift Container Platform 4756 security and bug fix update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4756 is now available withupdates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a securit ...
Red Hat: Moderate: OpenShift Container Platform 4.10.25 bug fix and security update
Synopsis Moderate: OpenShift Container Platform 41025 bug fix and security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 41025 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Co ...
Red Hat: Important: OpenShift Container Platform 4.9.45 bug fix and security update
Synopsis Important: OpenShift Container Platform 4945 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4945 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Co ...
Red Hat: Moderate: OpenShift Container Platform 3.11.784 security update
Synopsis Moderate: OpenShift Container Platform 311784 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 311784 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Pl ...
Red Hat: Important: OpenShift Container Platform 4.6.61 bug fix and security update
Synopsis Important: OpenShift Container Platform 4661 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 4661 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Co ...
Amazon Linux 2: ALAS2-2022-1822
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2: ALAS2-2022-1824
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) computeNextExponential sometimes returns negative numbers contrary to the documentation (CVE-2022-21549) The Xalan Java X ...
Amazon Linux 2: ALAS2CORRETTO8-2022-003
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2: ALAS2JAVA-OPENJDK11-2022-002
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP) Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11014, 1702, 18; Oracle GraalVM Enterprise Edition: 2035, 2131 and 22002 Easily exploitable vulnerability allows unauthenticated attacker with network ...
Amazon Linux 2: ALAS2-2022-1836
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2: ALAS2-2022-1835
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization) Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11013, 1701; Oracle GraalVM Enterprise Edition: 2034 and 2130 Difficult to exploit vulnerability allows unauthenticated attacker with network acce ...
Amazon Linux 2: ALAS2-2022-1823
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Hitachi Security Advisories: Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center
Multiple vulnerabilities have been found in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center CVE-2022-21540, CVE-2022-21541, CVE-2022-34169 Affected products and versions are listed below Please upgrade your version to the appropriate version, or ...
Hitachi Security Advisories: Multiple Vulnerabilities in Cosminexus
Cosminexus Developer's Kit for Java(TM) and Hitachi Developer's Kit for Java contain the following vulnerabilities: CVE-2022-21540, CVE-2022-21541, CVE-2022-34169 Cosminexus XML Processor contain the following vulnerability: CVE-2022-34169 Affected products and versions are listed below Please upgrade your version to the appropriate vers ...
Amazon Linux 2022: ALAS2022-2022-121
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) computeNextExponential sometimes returns negative numbers contrary to the documentation (CVE-2022-21549) The Xalan Java X ...
Amazon Linux 2022: ALAS2022-2022-119
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2022: ALAS2022-2022-113
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) computeNextExponential sometimes returns negative numbers contrary to the documentation (CVE-2022-21549) The Xalan Java X ...
Amazon Linux 2022: ALAS2022-2022-111
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2022: ALAS2022-2022-120
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...
Amazon Linux 2022: ALAS2022-2022-112
Generated code produced by C1 may leak a package-private class to a class from a different package (CVE-2022-21540) MethodHandleinvokeBasic() method can be accessed on byte code level from an arbitrary class (CVE-2022-21541) The Xalan Java XSLT library has an integer truncation issue when processing malicious stylesheets This can be used to cor ...

Github Repositories

https://github.com/for-A1kaid/javasec

记录日常java学习

javasec或安全攻防文章 记录日常java学习 changxia3com/2022/05/09/Shiro%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E6%BC%8F%E6%B4%9E%E7%AC%94%E8%AE%B0%E4%BA%94%EF%BC%88%E5%AF%B9%E6%8A%97%E7%AF%87%EF%BC%89/#rememberMe%E9%94%AE%E7%BB%95%E8%BF%87 mpweixinqqcom/s/outtxUANOa406ErGleWjtQ githubcom/Firebasky/Java/tree/main/BypassSM 826 内存马

https://github.com/bor8/CVE-2022-34169

https://nvd.nist.gov/vuln/detail/CVE-2022-34169

Description Checks if CVE-2022-34169 is fixed on your machine As far as I know, an exploit was found by a Google employee and not published Since the fix is known, a small test routine was written with this to check whether the fix is available at runtime Build yourself (optional) Optional: This is only available, if you have JDK: # Optional: To see if `javac` is available:

https://github.com/flowerwind/AutoGenerateXalanPayload

cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件

AutoGenerateXalanPayload 简介 这是一款根据cve-2022-34169漏洞延伸出的一个针对jdk xalan溢出漏洞的payload自动化生成工具。由于发现不同版本的Jdk所需要的溢出payload不同,所以这个自动化的生成工具诞生了,只需要用不同版本的JDK运行这个工程就可以生成出不同的xslt利用文件。 使用说明 复制selec

https://github.com/lsr00ter/Xalan-J_2.7.2_1.8.0_301_rce

Xalan-J_272_180_301_rce ref: blognoah360net/xalan-j-integer-truncation-reproduce-cve-2022-34169/

References

CWE-681https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1015860https://ubuntu.com/security/notices/USN-5546-2https://www.first.org/epsshttps://ubuntu.com/security/notices/USN-5546-1http://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.htmlhttp://www.openwall.com/lists/oss-security/2022/07/19/5http://www.openwall.com/lists/oss-security/2022/07/19/6http://www.openwall.com/lists/oss-security/2022/07/20/2http://www.openwall.com/lists/oss-security/2022/07/20/3http://www.openwall.com/lists/oss-security/2022/10/18/2http://www.openwall.com/lists/oss-security/2022/11/04/8http://www.openwall.com/lists/oss-security/2022/11/07/2https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kywhttps://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8https://lists.debian.org/debian-lts-announce/2022/10/msg00024.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/https://security.gentoo.org/glsa/202401-25https://security.netapp.com/advisory/ntap-20220729-0009/https://security.netapp.com/advisory/ntap-20240621-0006/https://www.debian.org/security/2022/dsa-5188https://www.debian.org/security/2022/dsa-5192https://www.debian.org/security/2022/dsa-5256https://www.oracle.com/security-alerts/cpujul2022.htmlhttp://packetstormsecurity.com/files/168186/Xalan-J-XSLTC-Integer-Truncation.htmlhttp://www.openwall.com/lists/oss-security/2022/07/19/5http://www.openwall.com/lists/oss-security/2022/07/19/6http://www.openwall.com/lists/oss-security/2022/07/20/2http://www.openwall.com/lists/oss-security/2022/07/20/3http://www.openwall.com/lists/oss-security/2022/10/18/2http://www.openwall.com/lists/oss-security/2022/11/04/8http://www.openwall.com/lists/oss-security/2022/11/07/2https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kywhttps://lists.apache.org/thread/2qvl7r43wb4t8p9dd9om1bnkssk07sn8https://lists.debian.org/debian-lts-announce/2022/10/msg00024.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H4YNJSJ64NPCNKFPNBYITNZU5H3L4D6L/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5OZNAZJ4YHLOKRRRZSWRT5OJ25E4XLM/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN3EVGR7FD3ZLV5SBTJXUIDCMSK4QUE2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KO3DXNKZ4EU3UZBT6AAR4XRKCD73KLMO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3XPOTPPBZIPFBZHQE5E7OW6PDACUMCJ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YULPNO3PAWMEQQZV2C54I3H3ZOXFZUTB/https://security.gentoo.org/glsa/202401-25https://security.netapp.com/advisory/ntap-20220729-0009/https://security.netapp.com/advisory/ntap-20240621-0006/https://www.debian.org/security/2022/dsa-5188https://www.debian.org/security/2022/dsa-5192https://www.debian.org/security/2022/dsa-5256https://www.oracle.com/security-alerts/cpujul2022.html
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
realteofile inclusionCVE-2025-27363fortinetCVE-2025-2263CVE-2025-29782CVE-2025-1266CVE-2025-24985command injectionCVE-2025-2304camaleon-cms*insecure direct object reference
Home
/
Search Results
/
CVE-2022-34169
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook