Schneider Electric C-Bus Automation Controller (5500SHAC) version 1.10 suffers from an authenticated arbitrary command execution vulnerability. An attacker can abuse the Start-up (init) script editor and exploit the script POST parameter to insert malicious Lua script code and execute commands with root privileges that will grant full control of the device.
369dcc204aec33824901fd4aa4857bc6bf66d576cc7b23a87a87ff67f445c639Ubuntu Security Notice 5452-1 - It was discovered that NTFS-3G was incorrectly validating NTFS metadata in its ntfsck tool by not performing boundary checks. A local attacker could possibly use this issue to cause a denial of service or to execute arbitrary code.
ebf3694f3193de98ce66fad3fbc38ef4cd8f9b447f92d1bccf62a395ef7d34dfRed Hat Security Advisory 2022-4801-01 - The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format. Issues addressed include a heap overflow vulnerability.
cbc294f85a2ab1a07026b4b619b01e0197418378e91ee9e7f1ccbc4a6ffedc85Red Hat Security Advisory 2022-4772-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1.
b6b91cbb209798d199faf95ac85ac23c254024493e3ed90c48d814672f7decf2GRR Rapid Response is an incident response framework focused on remote live forensics. The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely. GRR consists of 2 parts: client and server. GRR client is deployed on systems that one might want to investigate. On every such system, once deployed, GRR client periodically polls GRR frontend servers for work. "Work" means running a specific action: downloading file, listing a directory, etc. GRR server infrastructure consists of several components (frontends, workers, UI servers) and provides web-based graphical user interface and an API endpoint that allows analysts to schedule actions on clients and view and process collected data.
7bdd4ebe93db1623b65b9940f8709421aa2921d57c3a18e9d56cbd9974055a2eRed Hat Security Advisory 2022-4786-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
9e638edeb07c122ef5ecc8dea192e65d22c7c3ed418c514ab1ba53da9f85ad9cRed Hat Security Advisory 2022-4788-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
c9ed566e8689e3a85afd53a2e78619ecc66c8eef64657a805d8ce274a7c80b45WordPress User Meta Lite and Pro plugin versions 2.4.3 and below suffer from a path traversal vulnerability.
9f5dfc7d061a12ed0156906753e063fd8b488898a8f4b2709039a9ee6f78125fRed Hat Security Advisory 2022-4769-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1.
054dd4347a2651a169189289ec44b9edf2c42947f358aa65adc30ac4c3663fceUbuntu Security Notice 5431-1 - It was discovered that GnuPG was not properly processing keys with large amounts of signatures. An attacker could possibly use this issue to cause a denial of service.
15a6e79b4397775e40041ae827c38ee55a14f88dab1fc0e85cfb9432ae10a399Red Hat Security Advisory 2022-4787-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and out of bounds read vulnerabilities.
66730f067e9ddcf8fcff1d85b6f8ab77a985c0e614d15450ffa90772c73bea2cRed Hat Security Advisory 2022-4765-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.1 ESR.
be2b8673558f292d328a754245532c560632643caf086751ebe0ec110a24fa92Red Hat Security Advisory 2022-4768-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.1 ESR.
4a40a3853155415e9526bc0bd6cc44673d21efa13ddb92a8716101fdb3ba8908Ingredient Stock Management System version 1.0 suffers from an account takeover vulnerability.
ec7348c7ea40981571b3542540ba691bc12790f80da7ef325b3c3e3a10db0a85Ingredient Stock Management System version 1.0 suffers from a remote blind SQL injection vulnerability.
812877405ea0e76d72d7e4772f6c9f533edc2df0d65201ce055c9b60f7795d4dRed Hat Security Advisory 2022-4770-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1.
0b523dd8bd516f8902b25b256a8f11cc2aca493a20bdaa9a704d821a6337def9Red Hat Security Advisory 2022-4766-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.1 ESR.
38b6a68c11e83b1c6a0dffa5ccd243db1ed4f0b85ee079f06d73dc63ef27b3a5Red Hat Security Advisory 2022-4776-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.1 ESR.
80757edc7f9fc035fdf5c778f1037bb37eeabdf0d9803d91e7a35ab1e1631354Fast Food Ordering System version 1.0 suffers from a remote SQL injection vulnerability.
8518a971cab0dde43baf3b5a9ad23a3139fcb7aaaf3e739e7c20225885b170fd
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed