Published threat advisories for February 9, 2022

Certain SAP products are affected by a vulnerability allowing attackers to prepend arbitrary data to requests. This could lead to impersonation or cache poisoning, potentially resulting in a complete compromise of system confidentiality, integrity, and availability. The business risk is high due to the potential for ex

NVD published: February 9, 2022 • CISA KEV

A vulnerability in the Windows Print Spooler allows for elevated privileges. This impacts affected Windows systems and could lead to unauthorized access and system changes, posing a business risk.

NVD published: February 9, 2022 • CISA KEV

A vulnerability in the Windows Print Spooler service allows for privilege escalation, impacting affected Windows systems. This could lead to unauthorized data access and system compromise, posing a business risk.

NVD published: February 9, 2022 • CISA KEV

A vulnerability in the Windows Runtime component of Microsoft Windows systems could allow attackers to execute arbitrary code. This may impact affected organizations by leading to the compromise of systems, data, and business operations. The business risk is present if users interact with malicious content, potentially

NVD published: February 9, 2022 • CISA KEV

An issue in the Calendar feature of Zimbra Collaboration Suite allows attackers to inject executable JavaScript via HTML markup. This could lead to arbitrary markup injection and potential compromise of data. The vulnerability has been actively exploited in the wild. This poses a business risk to organizations using af

NVD published: February 9, 2022 • CISA KEV