Users with write permissions to a repository can delete arbitrary directories.
NVD-CWE-noinfo
CVE-2022-40314
A remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.
CVE-2022-40337
OASES (aka Open Aviation Strategic Engineering System) 8.8.0.2 allows attackers to execute arbitrary code via the Open Print Folder menu.
CVE-2022-40233
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. IBM X-Force ID: 235599.
CVE-2022-40259
MegaRAC Default Credentials Vulnerability
CVE-2022-40274
Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the ‘nodeIntegration’ option enabled.