Red Hat Security Advisory 2021-5047-02 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.4.0. Issues addressed include buffer overflow, bypass, denial of service, and spoofing vulnerabilities.
84513c296e1cb665f608c46256ab2a785c7a5175879460d7d82c607fa6b170feRed Hat Security Advisory 2021-5036-04 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a use-after-free vulnerability.
9d7063a42bd394aa00c0bd3b674e852478b071e64fc87de85a22e8919cbc3c98Ubuntu Security Notice 5183-1 - Julian Rauchberger discovered that BlueZ incorrectly handled memory when processing SDP attribute requests. A remote attacker could use this issue to cause BlueZ to crash, leading to a denial of service, or possibly execute arbitrary code.
5a8ba523bfe5ef5ece8e5ae5b5396645cd2be1a63fcac8710507aac26ec9ff87Grafana version 8.3.0 suffers from a directory traversal vulnerability that can allow for arbitrary file reading.
9273519e26f2056463537ab66f8628cb91f138407ab75d06184d8d23d07ea50dRed Hat Security Advisory 2021-5045-02 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.4.0. Issues addressed include buffer overflow, bypass, denial of service, and spoofing vulnerabilities.
999201abc31c40fe215c9fd3147adcfdee8840b27a3cbba9ac01e6553978ad41Red Hat Security Advisory 2021-5045-02 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.4.0. Issues addressed include buffer overflow, bypass, denial of service, and spoofing vulnerabilities.
999201abc31c40fe215c9fd3147adcfdee8840b27a3cbba9ac01e6553978ad41Red Hat Security Advisory 2021-5048-02 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.4.0. Issues addressed include buffer overflow, bypass, denial of service, and spoofing vulnerabilities.
52ee01bf4f97804e4815795bc2c04f34e9d1688b14476900aff6d01a8d3e1d87Whitepaper called Mail Information Gathering AppScript. This paper contains the exploitation of vulnerabilities for collecting email information using Google utilities via App Script using the Gmail App class. This paper exposes the design of a web application that collects mail information from users with associated Google mail accounts.
bb58e73be8e657614e1304dca838b2c7c09c9f5bf8e0bb733adf4f93ad1f3671This whitepaper is an overview on the Microsoft MSHTML remote code execution vulnerability recently highlighted in CVE-2021-40444.
087e3d97e374ce1d4b7286735f7a428ab28ea89b53f87246c6b35e526a161c30This Metasploit module creates a malicious docx file that when opened in Word on a vulnerable Windows system will lead to code execution. This vulnerability exists because an attacker can craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine.
fcc3f4d138a7fb7352da3e6cb2038a1b4776153656e84bcdef4857dab28eac23Red Hat Security Advisory 2021-5046-03 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.4.0. Issues addressed include buffer overflow, bypass, denial of service, and spoofing vulnerabilities.
ee077d75c706a7539579ac412e98e5621f6c04a089dd2ee6f67bcb62dc92c562LimeSurvey version 5.2.4 remote code execution exploit with a reverse shell.
236c03647e45f5a7d5c789322bbf472a01c4083719dbb4997d9a4dcaec135f05TestLink versions 1.16 through 1.19 suffer from an arbitrary file download vulnerability.
0d4f2423494cf6a179f394e226b4ffca187f2beaa2d20adb0504a4b550937e84Red Hat Security Advisory 2021-5038-04 - Red Hat Advanced Cluster Management for Kubernetes 2.2.10 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console — with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which provide security fixes, bug fixes and container upgrades. Issues addressed include a bypass vulnerability.
8c3861dc2826e4a0c7c98f1040e5e156c43227dbe0c19621db0bee3cb77b04e4Red Hat Security Advisory 2021-5053-03 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host. Red Hat Virtualization Hosts are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Issues addressed include a use-after-free vulnerability.
2ea87822a24cf699b6d07a14d68f62e1a010747706104760534aa1e6d782a460WordPress Catch Themes Demo Import plugin versions 1.6.1 and below suffer from a remote shell upload vulnerability.
aa2a40ca6681466ee19bd0785086d5094e88640579441d6538e0001846a9e1cfMTPutty version 1.0.1 suffers from an SSH password disclosure vulnerability.
1cca8979b3a05c7e1b8061034264207513e36f95b6cfa17e38cec49b96a6fb88Red Hat Security Advisory 2021-5030-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR7.
592a9b07fc0ea6d187ca6b5a4b60ca85429c67357ce211f947d5302a04c9a22aChikitsa Patient Management System version 2.0.2 suffers from a plugin related authenticated remote code execution vulnerability.
489db948f2625b95de14f6b6bd50ac312dc13814411d8a0dfb221933ab3b0b95Chikitsa Patient Management System version 2.0.2 suffers from a backup related authenticated remote code execution vulnerability.
38e473d7b8a2dbe92973b8889c127e05eb01d311517e63b3e7fe40f6ee387912Employees Daily Task Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
9bdbcc43cce447fc53907c7419cac82a4aa49be6ac74f26d6053b7c7be2527f2Employees Daily Task Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities. Original discovery of this vulnerability it attributed to Ragavender A G in November of 2021.
463ced96d84f948f456d4f081616df5378882cd7efd73a4f18063523f2f37791Kabir Alhasan Student Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
1db2902795ec0a7bc22ac70241cfddd70f4230a2f9a977a67f4217e6c2d666d0Raspberry Pi version 5.10 has default credentials of pi/raspberry. This has been a known standard of theirs for a long time but it has been formally given a CVE.
1183c7b2472dbbc2e419794c12c09bd7985487323c98c268fe5ab95a48cc15cb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed