Ubuntu Security Notice 4271-1 - Tim Brown discovered that Mesa incorrectly handled shared memory permissions. A local attacker could use this issue to obtain and possibly alter sensitive information belonging to another user.
a0481940e0e3e17061fa79054100c0a88f09172ee9fd25a46246da91d0e0a76fCisco Data Center Network Manager version 11.2.1 remote command injection exploit.
1dc9300d9c7a69f0cd8ed3652186c6007a1037f37260630af559930e809062ceRed Hat Security Advisory 2020-0445-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.6 serves as a replacement for Red Hat Single Sign-On 7.3.5, and includes bug fixes and enhancements. Issues addressed include code execution, cross site scripting, and deserialization vulnerabilities.
7dca04990d431ccd46b4698b913388ccc5f790d18cc0d93d2ed9c87273fbb6bdUbuntu Security Notice 4270-1 - It was discovered that Exiv2 incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service.
b0d78331ca462246ce1677858af1446cb450a6bec2a0e385f7e67d4f7af53577Cisco Data Center Network Manager version 11.2.1 suffers from a remote SQL injection vulnerability.
437d8b420db1eec19289d0c053fae436486c42eacf69e291ee0cf8ca705ad269Cisco Data Center Network Manager version 11.2 remote code execution exploit.
74fa98093de0741d04ea7ad307c9b37d10281f82652869e8958f8e6740e6396cUbuntu Security Notice 4267-1 - It was discovered that mbedtls has a bounds-check bypass through an integer overflow that can be used by an attacked to execute arbitrary code or cause a denial of service. It was discovered that mbedtls has a vulnerability where an attacker could execute arbitrary code or cause a denial of service via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session. Various other issues were also addressed.
6ef2365473956a95058c44fc7e585d8daf238d0ea1f93d4dd325d781a3aa5508Ecommerce Systempay version 1.0 suffers from a production key brute forcing vulnerability.
29d5ffced15ee4c215c3090b132938448156df8e6bf075bd0a83f276040169e4Online Job Portal version 1.0 suffers from a cross site request forgery vulnerability.
d4bbca34347ca44dfbff3e807edb38058cd39f8ce92f1ef0786d538257215192Online Job Portal version 1.0 suffers from a code execution vulnerability.
685f41874a20443dbd6282a0009516256e7e5e4530236fcdd8a6f27441108a36Online Job Portal version 1.0 suffers from a remote SQL injection vulnerability.
4628797a8be326a99c967b3f1ed9468abb30a7fa19d19059db482bdee291e51dRarmaRadio version 2.72.4 suffers from multiple denial of service vulnerabilities.
cd5ddf4a1037d00376073820438cc2acea6c95cbb6c7f3c8b2e02fd6c1dfc0bbTapinRadio version 2.12.3 suffers from multiple denial of service vulnerabilities.
2085459c280e4eeebe62d2767ea3727ec8d8cd63edd305000f97c88ad8a2ce3bAbsoluteTelnet version 11.12 suffers from multiple denial of service vulnerabilities.
427f84c5bb702cc78f0a2db01e313ebafb3447a08a8b24b5e58ae93a0cefd525VIM version 8.2 suffers from a denial of service vulnerability.
a3c8101320cac1a692fc67929911f629814fff48f2fc8ab1066f6343826be239ELAN Smart-Pad version 11.10.15.1 suffers from an unquoted service path vulnerability.
749c8d7370e05113c9860bc55ae4b17ba994b4f167d764cfadccf8f0d7def3b0
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed