Remotely alerts

CVE-2021-38297

on Sept. 8, 2022, 9:48 p.m.

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

Learn more

Tags:  Mailing ListRelease NotesThird Party AdvisoryPatchVendor AdvisoryBroken Link

CVE-2020-1779

on Oct. 19, 2021, 12:19 p.m.

When dynamic templates are used (OTRSTicketForms), admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior versions.

Learn more

Tags:  Broken Link

CVE-2021-3671

on Oct. 19, 2021, 12:17 p.m.

A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

Learn more

Tags:  Broken LinkIssue Tracking

CVE-2021-35214

on Oct. 18, 2021, 6:18 p.m.

The vulnerability in SolarWinds Pingdom can be described as a failure to invalidate user session upon password or email address change. When running multiple active sessions in separate browser windows, it was observed a password or email address change could be changed without terminating the user session. This issue has been resolved on September 13, …

Learn more

Tags:  Broken Link

CVE-2021-37976

on Feb. 19, 2022, 4:44 a.m.

Inappropriate implementation in Memory in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Learn more

Tags:  Release NotesVendor AdvisoryIssue TrackingExploitBroken LinkPatchThird Party AdvisoryVDB Entry

CVE-2021-39900

on Oct. 13, 2021, 4:20 p.m.

Information disclosure from SendEntry in GitLab starting with 10.8 allowed exposure of full URL of artifacts stored in object-storage with a temporary availability via Rails logs.

Learn more

Tags:  Broken Link

CVE-2021-41093

on Oct. 12, 2021, 9:30 p.m.

Wire is an open source secure messenger. In affected versions if the an attacker gets an old but valid access token they can take over an account by changing the email. This issue has been resolved in version 3.86 which uses a new endpoint which additionally requires an authentication cookie. See wire-ios-sync-engine and wire-ios-transport references. …

Learn more

Tags:  Broken Link

CVE-2021-39869

on Oct. 12, 2021, 7:10 p.m.

In all versions of GitLab CE/EE since version 8.9, project exports may expose trigger tokens configured on that project.

Learn more

Tags:  Broken Link

CVE-2021-39433

on Oct. 12, 2021, 7:10 p.m.

A local file inclusion (LFI) vulnerability exists in version BIQS IT Biqs-drive v1.83 and below when sending a specific payload as the file parameter to download/index.php. This allows the attacker to read arbitrary files from the server with the permissions of the configured web-user.

Learn more

Tags:  Broken Link

CVE-2021-39882

on Oct. 12, 2021, 6:39 p.m.

In all versions of GitLab CE/EE, provided a user ID, anonymous users can use a few endpoints to retrieve information about any GitLab user.

Learn more

Tags:  Broken Link

CVE-2021-39894

on Oct. 12, 2021, 5:49 p.m.

In all versions of GitLab CE/EE since version 8.0, a DNS rebinding vulnerability exists in Fogbugz importer which may be used by attackers to exploit Server Side Request Forgery attacks.

Learn more

Tags:  Broken Link

CVE-2021-39878

on Oct. 12, 2021, 5:15 p.m.

A stored Reflected Cross-Site Scripting vulnerability in the Jira integration in GitLab version 13.0 up to 14.3.1 allowed an attacker to execute arbitrary javascript code.

Learn more

Tags:  Broken Link

CVE-2021-39888

on May 13, 2022, 2:15 p.m.

In all versions of GitLab EE starting from 13.10 before 14.1.7, all versions starting from 14.2 before 14.2.5, and all versions starting from 14.3 before 14.3.1 a specific API endpoint may reveal details about a private group and other sensitive info inside issue and merge request templates.

Learn more

Tags:  Broken Link

CVE-2021-39877

on Oct. 12, 2021, 3:55 p.m.

A vulnerability was discovered in GitLab starting with version 12.2 that allows an attacker to cause uncontrolled resource consumption with a specially crafted file.

Learn more

Tags:  Broken Link

CVE-2021-39874

on Oct. 12, 2021, 3:14 p.m.

In all versions of GitLab CE/EE since version 11.0, the requirement to enforce 2FA is not honored when using git commands.

Learn more

Tags:  Broken Link

CVE-2021-39893

on Oct. 9, 2021, 3:34 a.m.

A potential DOS vulnerability was discovered in GitLab starting with version 9.1 that allowed parsing files without authorisation.

Learn more

Tags:  Broken Link

CVE-2021-22257

on Oct. 9, 2021, 3:34 a.m.

An issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all versions starting from 14.1 before 14.1.4, all versions starting from 14.2 before 14.2.2. The route for /user.keys is not restricted on instances with public visibility disabled. This allows user enumeration on such instances.

Learn more

Tags:  Broken Link

CVE-2021-39886

on Oct. 9, 2021, 3:30 a.m.

Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references.

Learn more

Tags:  Broken Link

CVE-2021-39891

on Oct. 9, 2021, 3:29 a.m.

In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.

Learn more

Tags:  Broken Link

CVE-2021-22261

on July 21, 2022, 10:46 a.m.

A stored Cross-Site Scripting vulnerability in the Jira integration in all GitLab versions starting from 13.9 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting from 14.2 before 14.2.2 allows an attacker to execute arbitrary JavaScript code on the victim's behalf via malicious Jira API responses

Learn more

Tags:  Broken LinkPatchThird Party AdvisoryMailing ListVendor Advisory

CVE-2021-22259

on Oct. 8, 2021, 5:03 p.m.

A potential DOS vulnerability was discovered in GitLab EE starting with version 12.6 due to lack of pagination in dependencies API.

Learn more

Tags:  Broken Link

CVE-2021-40960

on Oct. 7, 2021, 6:17 p.m.

Galera WebTemplate 1.0 is affected by a directory traversal vulnerability that could reveal information from /etc/passwd and /etc/shadow.

Learn more

Tags:  Broken Link

CVE-2021-28116

on April 4, 2022, 1 p.m.

Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody.

Learn more

Tags:  Broken Link

CVE-2020-14130

on Sept. 27, 2021, 5:09 p.m.

Some js interfaces in the Xiaomi community were exposed, causing sensitive functions to be maliciously called on Xiaomi community app Affected Version <3.0.210809

Learn more

Tags:  Broken LinkVendor Advisory

CVE-2020-14109

on Sept. 27, 2021, 5:04 p.m.

There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version =< 1.1.12

Learn more

Tags:  Broken Link

CVE-2021-30860

on Sept. 2, 2022, 9:15 p.m.

An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Learn more

Tags:  Vendor AdvisoryBroken LinkExploitThird Party AdvisoryNot ApplicableVDB Entry

CVE-2021-32076

on Sept. 23, 2021, 12:21 p.m.

Access Restriction Bypass via referrer spoof was discovered in SolarWinds Web Help Desk 12.7.2. An attacker can access the 'Web Help Desk Getting Started Wizard', especially the admin account creation page, from a non-privileged IP address network range or loopback address by intercepting the HTTP request and changing the referrer from the public IP address …

Learn more

Tags:  Broken Link

CVE-2021-22239

on Sept. 21, 2021, 2:08 p.m.

An unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and later.

Learn more

Tags:  Broken Link

CVE-2021-27022

on Dec. 16, 2021, 8:34 p.m.

A flaw was discovered in bolt-server and ace where running a task with sensitive parameters results in those sensitive parameters being logged when they should not be. This issue only affects SSH/WinRM nodes (inventory service nodes).

Learn more

Tags:  Broken Link

CVE-2021-34550

on Sept. 20, 2021, 6:53 p.m.

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory access, and a client crash, via a crafted onion service descriptor

Learn more

Tags:  Broken Link

CVE-2021-34549

on Sept. 20, 2021, 6:53 p.m.

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for certain retrieval of circuit data. Consequently. an attacker can trigger the use of an attacker-chosen circuit ID to cause algorithm inefficiency.

Learn more

Tags:  Broken Link

CVE-2021-22915

on Sept. 20, 2021, 1:51 p.m.

Nextcloud server before 19.0.11, 20.0.10, 21.0.2 is vulnerable to brute force attacks due to lack of inclusion of IPv6 subnets in rate-limiting considerations. This could potentially result in an attacker bypassing rate-limit controls such as the Nextcloud brute-force protection.

Learn more

Tags:  Broken Link

CVE-2021-22194

on Sept. 14, 2021, 4:51 p.m.

In all versions of GitLab, marshalled session keys were being stored in Redis.

Learn more

Tags:  Broken Link

CVE-2021-34548

on Sept. 14, 2021, 2:38 p.m.

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-003. An attacker can forge RELAY_END or RELAY_RESOLVED to bypass the intended access control for ending a stream.

Learn more

Tags:  Broken Link

CVE-2021-34143

on Sept. 14, 2021, 1:57 p.m.

The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C_DEMO_V1.0 does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service (deadlock) of the device by flooding it with LMP_AU_Rand packets after paging procedure. User intervention is required to restart the device.

Learn more

Tags:  Broken Link

CVE-2021-23404

on Sept. 14, 2021, 1:43 p.m.

This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Request Forgery (CSRF) attack.

Learn more

Tags:  Broken Link

CVE-2021-31610

on Sept. 13, 2021, 5:44 p.m.

The Bluetooth Classic implementation on AB32VG1 devices does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service (either restart or deadlock the device) by flooding a device with LMP_AU_rand data.

Learn more

Tags:  Broken Link

CVE-2021-31590

on Dec. 3, 2021, 1:52 p.m.

PwnDoc all versions until 0.4.0 (2021-08-23) has incorrect JSON Webtoken handling, leading to incorrect access control. With a valid JSON Webtoken that is used for authentication and authorization, a user can keep his admin privileges even if he is downgraded to the "user" privilege. Even after a user's account is deleted, the user can still …

Learn more

Tags:  Broken Link

CVE-2019-12288

on Sept. 13, 2021, 11:38 a.m.

An issue was discovered in upgrade_htmls.cgi on VStarcam 100T (C7824WIP) KR75.8.53.20 and 200V (C38S) KR203.18.1.20 devices. The web service, network, and account files can be manipulated through a web UI firmware update without any authentication. The attacker can achieve access to the device through a manipulated web UI firmware update.

Learn more

Tags:  Broken Link

CVE-2021-40379

on Sept. 10, 2021, 4:42 p.m.

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. rstp://.../medias2 does not require authorization.

Learn more

Tags:  Broken Link

CVE-2021-40378

on Sept. 10, 2021, 4:28 p.m.

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. /cgi-bin/support/killps.cgi deletes all data from the device.

Learn more

Tags:  Broken Link

CVE-2021-40380

on Sept. 10, 2021, 4:14 p.m.

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. cameralist.cgi and setcamera.cgi disclose credentials.

Learn more

Tags:  Broken Link

CVE-2021-40381

on Sept. 10, 2021, 4:06 p.m.

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. index_MJpeg.cgi allows video access.

Learn more

Tags:  Broken Link

CVE-2021-39177

on Sept. 10, 2021, 2:30 p.m.

Geyser is a bridge between Minecraft: Bedrock Edition and Minecraft: Java Edition. Versions of Geyser prior to 1.4.2-SNAPSHOT allow anyone that can connect to the server to forge a LoginPacket with manipulated JWT token allowing impersonation as any user. Version 1.4.2-SNAPSHOT contains a patch for the issue. There are no known workarounds aside from upgrading.

Learn more

Tags:  PatchThird Party AdvisoryBroken LinkVendor Advisory

CVE-2021-40382

on Sept. 10, 2021, 1:10 p.m.

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. mjpegStreamer.cgi allows video screenshot access.

Learn more

Tags:  Broken Link

CVE-2021-23428

on Sept. 9, 2021, 7:13 p.m.

This affects all versions of package elFinder.NetCore. The Path.Combine(...) method is used to create an absolute file path. Due to missing sanitation of the user input and a missing check of the generated path its possible to escape the Files directory via path traversal

Learn more

Tags:  Broken Link

CVE-2017-8339

on Sept. 9, 2021, 5:26 p.m.

PSKMAD.sys in Panda Free Antivirus 18.0 allows local users to cause a denial of service (BSoD) via a crafted DeviceIoControl request to \\.\PSMEMDriver.

Learn more

Tags:  Broken LinkPatchRelease NotesVendor Advisory

CVE-2017-11281

on Sept. 8, 2021, 5:21 p.m.

Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.

Learn more

Tags:  PatchVendor AdvisoryThird Party AdvisoryVDB EntryIssue TrackingPermissions RequiredExploitBroken Link

CVE-2020-20345

on Sept. 7, 2021, 9:01 p.m.

WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the page management background which allows attackers to obtain cookies via a crafted payload entered into the search box.

Learn more

Tags:  Broken Link

CVE-2021-38342

on Sept. 2, 2021, 4:33 p.m.

The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to Cross-Site Request Forgery via the `npBulkAction`s and `npBulkEdit` `admin_post` actions, which allowed attackers to trash or permanently purge arbitrary posts as well as changing their status, reassigning their ownership, and editing other metadata.

Learn more

Tags:  Broken Link

CVE-2021-38343

on Sept. 2, 2021, 4:30 p.m.

The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to an Open Redirect via the `page` POST parameter in the `npBulkActions`, `npBulkEdit`, `npListingSort`, and `npCategoryFilter` `admin_post` actions.

Learn more

Tags:  Broken Link

CVE-2021-22245

on Aug. 31, 2021, 7 p.m.

Improper validation of commit author in GitLab CE/EE affecting all versions allowed an attacker to make several pages in a project impossible to view

Learn more

Tags:  Broken Link

CVE-2021-22237

on Aug. 31, 2021, 6:42 p.m.

Under specialized conditions, GitLab may allow a user with an impersonation token to perform Git actions even if impersonation is disabled. This vulnerability is present in GitLab CE/EE versions before 13.12.9, 14.0.7, 14.1.2

Learn more

Tags:  Broken Link

CVE-2020-15955

on Aug. 31, 2021, 3:49 p.m.

In s/qmail through 4.0.07, an active MitM can inject arbitrary plaintext commands into a STARTTLS encrypted session between an SMTP client and s/qmail. This allows e-mail messages and user credentials to be sent to the MitM attacker.

Learn more

Tags:  Technical DescriptionThird Party AdvisoryMitigationPatchVendor AdvisoryBroken Link

CVE-2020-4788

on Aug. 31, 2021, 3:44 p.m.

IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.

Learn more

Tags:  VDB EntryVendor AdvisoryBroken Link

CVE-2021-23430

on Aug. 31, 2021, 1:44 a.m.

All versions of package startserver are vulnerable to Directory Traversal due to missing sanitization.

Learn more

Tags:  Broken Link

CVE-2021-23429

on Aug. 31, 2021, 1:41 a.m.

All versions of package transpile are vulnerable to Denial of Service (DoS) due to a lack of input sanitization or whitelisting, coupled with improper exception handling in the .to() function.

Learn more

Tags:  Broken Link

CVE-2021-22253

on Aug. 30, 2021, 11:56 a.m.

Improper authorization in GitLab EE affecting all versions since 13.4 allowed a user who previously had the necessary access to trigger deployments to protected environments under specific conditions after the access has been removed

Learn more

Tags:  Broken Link

CVE-2021-22714

on Aug. 27, 2021, 2:48 p.m.

A CWE-119:Improper restriction of operations within the bounds of a memory buffer vulnerability exists in PowerLogic ION7400, PM8000 and ION9000 (All versions prior to V3.0.0), which could cause the meter to reboot or allow for remote code execution.

Learn more

Tags:  Vendor AdvisoryBroken Link

CVE-2021-22254

on Aug. 26, 2021, 11:54 a.m.

Under very specific conditions a user could be impersonated using Gitlab shell. This vulnerability affects GitLab CE/EE 13.1 and later through 14.1.2, 14.0.7 and 13.12.9.

Learn more

Tags:  Broken Link

CVE-2021-29990

on Aug. 25, 2021, 4:59 p.m.

Mozilla developers and community members reported memory safety bugs present in Firefox 90. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 91.

Learn more

Tags:  Broken LinkIssue TrackingVendor Advisory

CVE-2021-25955

on Aug. 1, 2022, 12:27 p.m.

In “Dolibarr ERP CRM”, WYSIWYG Editor module, v2.8.1 to v13.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the “Private Note” field at “/adherents/note.php?id=1” endpoint. These scripts are executed in a victim’s browser when they open the page containing the vulnerable field. In the worst …

Learn more

Tags:  PatchThird Party AdvisoryBroken Link

CVE-2021-3048

on Aug. 19, 2021, 8:05 p.m.

Certain invalid URL entries contained in an External Dynamic List (EDL) cause the Device Server daemon (devsrvr) to stop responding. This condition causes subsequent commits on the firewall to fail and prevents administrators from performing commits and configuration changes even though the firewall remains otherwise functional. If the firewall then restarts, it results in a …

Learn more

Tags:  Broken Link

CVE-2013-2763

on Jan. 31, 2022, 8:31 p.m.

** DISPUTED ** The Schneider Electric M340 PLC modules allow remote attackers to cause a denial of service (resource consumption) via unspecified vectors. NOTE: the vendor reportedly disputes this issue because it "could not be duplicated" and "an attacker could not remotely exploit this observed behavior to deny PLC control functions."

Learn more

Tags:  Broken LinkThird Party AdvisoryUS Government Resource

CVE-2021-23421

on Aug. 19, 2021, 5:28 p.m.

All versions of package merge-change are vulnerable to Prototype Pollution via the utils.set function.

Learn more

Tags:  Broken Link

CVE-2021-22385

on Aug. 17, 2021, 8:59 p.m.

A component of the Huawei smartphone has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution.

Learn more

Tags:  Broken Link

CVE-2021-37634

on Aug. 16, 2021, 8:54 p.m.

Leafkit is a templating language with Swift-inspired syntax. Versions prior to 1.3.0 are susceptible to Cross-site Scripting (XSS) attacks. This affects anyone passing unsanitised data to Leaf's variable tags. Before this fix, Leaf would not escape any strings passed to tags as variables. If an attacker managed to find a variable that was rendered with …

Learn more

Tags:  Broken Link

CVE-2021-29977

on March 16, 2022, 2:53 p.m.

Mozilla developers reported memory safety bugs present in Firefox 89. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 90.

Learn more

Tags:  Broken LinkIssue TrackingVendor Advisory

CVE-2021-29976

on March 16, 2022, 2:48 p.m.

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird < 78.12, Firefox ESR < 78.12, and Firefox < 90.

Learn more

Tags:  Broken LinkIssue TrackingVendor Advisory

CVE-2021-22240

on Aug. 12, 2021, 2:26 p.m.

Improper access control in GitLab EE versions 13.11.6, 13.12.6, and 14.0.2 allows users to be created via single sign on despite user cap being enabled

Learn more

Tags:  Broken Link

CVE-2021-37578

on Aug. 11, 2021, 2:35 p.m.

Apache jUDDI uses several classes related to Java's Remote Method Invocation (RMI) which (as an extension to UDDI) provides an alternate transport for accessing UDDI services. RMI uses the default Java serialization mechanism to pass parameters in RMI invocations. A remote attacker can send a malicious serialized object to the above RMI entries. The objects …

Learn more

Tags:  Broken LinkMailing ListThird Party Advisory

CVE-2021-21865

on Sept. 3, 2022, 3:27 a.m.

A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods.Clone() functionality of CODESYS GmbH CODESYS Development System 3.5.16. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.

Learn more

Tags:  Not ApplicableBroken LinkThird Party Advisory

CVE-2021-36764

on Aug. 11, 2021, 12:09 a.m.

In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference. Crafted communication requests may cause a Null pointer dereference in the affected CODESYS products and may result in a denial-of-service condition.

Learn more

Tags:  Broken Link

CVE-2021-29297

on Aug. 9, 2021, 6:50 p.m.

Buffer Overflow in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe" in the module "MSVCR100.dll".

Learn more

Tags:  Broken LinkThird Party Advisory

CVE-2021-29298

on Aug. 9, 2021, 6:49 p.m.

Improper Input Validation in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe"in the module "fxVPStatcTcp.dll".

Learn more

Tags:  Broken LinkThird Party Advisory

CVE-2020-7388

on Aug. 9, 2021, 5:33 p.m.

Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authentication request, an attacker can bypass credential validation. While exploiting this does require knowledge of the installation path, that information can be learned by exploiting CVE-2020-7387. This issue was fixed in AdxAdmin 93.2.53, which ships with updates for …

Learn more

Tags:  Broken Link

CVE-2020-7387

on Aug. 9, 2021, 5:20 p.m.

Sage X3 Installation Pathname Disclosure. A specially crafted packet can elicit a response from the AdxDSrv.exe component that reveals the installation directory of the product. Note that this vulnerability can be combined with CVE-2020-7388 to achieve full RCE. This issue was fixed in AdxAdmin 93.2.53, which ships with updates for on-premises versions of Sage X3 …

Learn more

Tags:  Broken Link

CVE-2021-23417

on Aug. 5, 2021, 12:32 p.m.

All versions of package deepmergefn are vulnerable to Prototype Pollution via deepMerge function.

Learn more

Tags:  Broken Link

CVE-2021-23416

on Aug. 5, 2021, 12:25 p.m.

This affects all versions of package curly-bracket-parser. When used as a template library, it does not properly sanitize the user input.

Learn more

Tags:  Broken Link

CVE-2020-7389

on July 15, 2022, 5:51 p.m.

Sage X3 System CHAINE Variable Script Command Injection. An authenticated user with developer access can pass OS commands via this variable used by the web application. Note, this developer configuration should not be deployed in production.

Learn more

Tags:  Broken Link

CVE-2021-32739

on Dec. 3, 2021, 2:39 a.m.

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. From version 2.4.0 through version 2.12.4, a vulnerability exists that may allow privilege escalation for authenticated API users. With a read-ony user's credentials, an attacker can view most attributes of all config objects …

Learn more

Tags:  Broken LinkVendor Advisory

CVE-2020-7390

on Aug. 2, 2021, 6:14 p.m.

Sage X3 Stored XSS Vulnerability on ‘Edit’ Page of User Profile. An authenticated user can pass XSS strings the "First Name," "Last Name," and "Email Address" fields of this web application component. Updates are available for on-premises versions of Version 12 (components shipped with Syracuse 12.10.0 and later) of Sage X3. Other on-premises versions of …

Learn more

Tags:  Broken Link

CVE-2020-15078

on May 12, 2022, 8:15 p.m.

OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.

Learn more

Tags:  Broken Link

CVE-2020-6059

on Dec. 22, 2021, 7:25 p.m.

An exploitable out of bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out of bounds memory read which can result in sensitive information disclosure and Denial Of Service. In order to trigger this vulnerability, an attacker needs to send a specially …

Learn more

Tags:  ExploitThird Party AdvisoryBroken Link

CVE-2020-20230

on Sept. 8, 2022, 9:22 p.m.

Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the sshd process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU.

Learn more

Tags:  ExploitThird Party AdvisoryBroken Link

CVE-2021-2412

on July 23, 2021, 1:25 p.m.

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable …

Learn more

Tags:  ExploitThird Party AdvisoryUS Government ResourcePatchVendor AdvisoryBroken Link

CVE-2019-10527

on July 21, 2021, 11:39 a.m.

u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon …

Learn more

Tags:  Broken Link

CVE-2019-10562

on July 21, 2021, 11:39 a.m.

u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, …

Learn more

Tags:  Broken Link

CVE-2019-10596

on July 21, 2021, 11:39 a.m.

u'Improper access control can lead signed process to guess pid of other processes and access their address space' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Nicobar, QCS605, QCS610, Rennell, SA6155P, Saipan, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, …

Learn more

Tags:  Broken Link

CVE-2019-10597

on July 21, 2021, 11:39 a.m.

kernel writes to user passed address without any checks can lead to arbitrary memory write in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, MSM8996, MSM8996AU, Nicobar, QCS605, Rennell, Saipan, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Learn more

Tags:  Broken Link

CVE-2019-10615

on July 21, 2021, 11:39 a.m.

u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in …

Learn more

Tags:  Broken Link

CVE-2019-10626

on July 21, 2021, 11:39 a.m.

Payload size is not validated before reading memory that may cause issue of accessing invalid pointer or some garbage data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, …

Learn more

Tags:  Broken Link

CVE-2019-11709

on July 21, 2021, 11:39 a.m.

Mozilla developers and community members reported memory safety bugs present in Firefox 67 and Firefox ESR 60.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and …

Learn more

Tags:  Broken LinkIssue TrackingVendor Advisory

CVE-2019-12768

on July 21, 2021, 11:39 a.m.

An issue was discovered on D-Link DAP-1650 devices through v1.03b07 before 1.04B02_J65H Hot Fix. Attackers can bypass authentication via forceful browsing.

Learn more

Tags:  Broken Link

CVE-2019-13994

on July 21, 2021, 11:39 a.m.

u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, …

Learn more

Tags:  Broken Link

CVE-2019-13995

on July 21, 2021, 11:39 a.m.

u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired …

Learn more

Tags:  Broken Link

CVE-2019-13998

on July 21, 2021, 11:39 a.m.

u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon …

Learn more

Tags:  Broken Link

CVE-2019-13999

on July 21, 2021, 11:39 a.m.

u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, …

Learn more

Tags:  Broken Link

CVE-2019-14074

on July 21, 2021, 11:39 a.m.

u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, …

Learn more

Tags:  Broken Link

CVE-2019-14080

on July 21, 2021, 11:39 a.m.

Out of bound write can happen due to lack of check of array index value while parsing SDP attribute for SAR in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096AU, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS605, QM215, …

Learn more

Tags:  Broken Link