Debian Linux Security Advisory 5421-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.
6215f41254a13b2b6677dbed490abae033a0665d1a96278abf15238bb06a67f6RenderDoc versions 1.26 and below suffer from integer underflow, integer overflow, and symlink vulnerabilities.
cc497579b678adb0532eece7bf7f32783a2ff614acf426c5981789ff6293796cUbuntu Security Notice 6146-1 - It was discovered that Netatalk did not properly validate the length of user-supplied data in the DSI structures. A remote attacker could possibly use this issue to execute arbitrary code with the privileges of the user invoking the programs. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that Netatalk did not properly validate the length of user-supplied data in the ad_addcomment function. A remote attacker could possibly use this issue to execute arbitrary code with root privileges. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
0a3668c0e69cd8ae683363baf9ba82938a5c5b1456134e2145fda35db4ca4ee9Red Hat Security Advisory 2023-3550-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Issues addressed include a bypass vulnerability.
1b92de040e59df2686810dd7a3f6854fe112b37d64084f04d129498e5b9786e0This python script mints a .ps1 file with an exploitable semicolon condition that allows for command execution from Microsoft Windows PowerShell. This is an updated exploit to work with Python3.
4213f6f37e107f80de8ae921a759ed1c060b04954405f63904e79423474d16caWordPress Directorist plugin versions 7.5.4 and below suffer from insecure direct object reference and privilege escalation vulnerabilities.
a15e7fd8c5bc9d777f92de320392c7f33636ed93ea834586dbd8b300720116ddDelta Electronics InfraSuite Device Master versions below 1.0.5 have an unauthenticated .NET deserialization vulnerability within the ParseUDPPacket() method of the Device-Gateway-Status process. The ParseUDPPacket() method reads user-controlled packet data and eventually calls BinaryFormatter.Deserialize() on what it determines to be the packet header without appropriate validation, leading to unauthenticated code execution as the user running the Device-Gateway-Status process.
9f0d3862f019202aea4e14692644ab8356967d12a61b6b3dc1c1b6df8ea0f48cUbuntu Security Notice 6145-1 - It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue was only fixed for Ubuntu 16.04 LTS. It was discovered that Sysstat incorrectly handled certain arithmetic multiplications in 64-bit systems, as a result of an incomplete fix for CVE-2022-39377. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code.
a5d58f856261860b6964c3cf20d79d5e226dab07153ff8f60841769fcf973f04Expert Restaurant eCommerce version 1.0 suffers from a cross site scripting vulnerability.
4b5d35a8689920dff8b8a1ad2d59e520d9c61fb5fd41627a070db61ed27351c5Expert Restaurant eCommerce version 1.0 suffers from a remote SQL injection vulnerability.
b6e31497e8a7cc6ceef84e545a5a4c1b599505d08acbf2c30cc9b39d5a07c19bRed Hat Security Advisory 2023-3410-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.20.
d963cd09a96aee5798e60330c260362dfa6d08fe8d90524b259dc3ea4c1ed65fDebian Linux Security Advisory 5420-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
209fcc0d6308ca3c4f8ca823440e01e01d92ded52eed8063ef23b3de06f613d6MVC Shop version 0.5 suffers from a cross site scripting vulnerability.
1ed65e794b94cb597051a909e32906a0af1967dc0c2dd1cb903588ea8137fde0NETXPERTS CMS version 0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
2d1ca320e3b663ac1f4ccab2f0fc1872177117ee2e48f1f7e5edb27711b24dc0Red Hat Security Advisory 2023-3409-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.20.
4b36cffff7f2eb3dd3f7aac7876f885d6bfb3b4b8248f206f1c17c80e90840ecMicrosoft's HVCIScan binary suffers from a dll hijacking vulnerability.
865ceea55981bfe42ef02662844aae4e83d864301172df9484458a4ffd66687fAnuranan SBAdmin version 2 appears to leave default credentials installed after installation.
249573109dc923bcd9d2cc64d78f374e963bda3c95fba47a9dadb93877d3252a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed