Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-30333PUBLISHED: 2022-05-09RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
CVE-2022-23066PUBLISHED: 2022-05-09
In Solana rBPF versions 0.2.26 and 0.2.27 are affected by Incorrect Calculation which is caused by improper implementation of sdiv instruction. This can lead to the wrong execution path, resulting in huge loss in specific cases. For example, the result of a sdiv instruction may decide whether to tra...
CVE-2022-28463PUBLISHED: 2022-05-08ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.
CVE-2022-28470PUBLISHED: 2022-05-08marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor.
CVE-2022-1620PUBLISHED: 2022-05-08NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input.
User Rank: Ninja
2/23/2015 | 11:06:20 AM
In my opinion, the entire problem is laid bare in that statement. The biggest issue is that those so-called leaders are not really up to the task. Elected officials tend to grant important positions to political allies, or to those with whom they have had long associations. Very little consideration is given to the person's ability to actually perform the task given to them. In a political environment, politics rule decision making processes and that, in and of itself, almost rules out selection of the best qualified individual. In many instances, those leaders aspire to expand their empire and sphere of influence much more than to actually perform their assigned tasks. As far as the "held to the fire" part, that is usually an even worse scenario. I'm reminded of the old saying "if a person screws up, promote them". Political environments tend to glaze over mistakes with regularity, and with little consequence. We need only look at the various scandals and security issues in the federal government for examples, and it gets even worse as you start looking at state and local levels where those events get very little press. I hate to sound so cynical about this whole thing; I would love to hear what other people think about this.