Debian Linux Security Advisory 5508-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
5550e68ba1d2b614ebdd9b77285dea84c54ce37ebdd27ec26f2df951e220f22cDebian Linux Security Advisory 5503-1 - Multiple security issues were discovered in Netatalk, an implementation of the Apple Filing Protocol (AFP) for offering file service (mainly) to macOS clients, which may result in the execution of arbitrary code or information disclosure.
3ad19cdf2f3e4a2e4515cadb2985e91ea06909ebbd3aa9ef44bfbdc77aef9dabDebian Linux Security Advisory 5501-1 - Mickael Karatekin discovered that the GNOME session locking didn't restrict a keyboard shortcut used for taking screenshots in GNOME Screenshot which could result in information disclosure.
6dd5a03b36c342db3e425efff947ef6751149b63a87ddd53a27eb00501832777Debian Linux Security Advisory 5499-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
18c7f1f67b298f5df1f43785c385d5afbd0b2d8bba69a0a01d8a3731e5b29df2VMware vRealize Log Insights versions 8.x contain multiple vulnerabilities, such as directory traversal, broken access control, deserialization, and information disclosure. When chained together, these vulnerabilities allow a remote, unauthenticated attacker to execute arbitrary commands on the underlying operating system as the root user. This Metasploit module achieves code execution via triggering a RemotePakDownloadCommand command via the exposed thrift service after obtaining the node token by calling a GetConfigRequest thrift command. After the download, it will trigger a PakUpgradeCommand for processing the specially crafted PAK archive, which then will place the JSP payload under a certain API endpoint (pre-authenticated) location upon extraction for gaining remote code execution. Successfully tested against version 8.0.2.
2e4132d3093987ff065179429e52ff5e9baad8185fde7f58136c18d0aa950a90Ubuntu Security Notice 6354-1 - It was discovered that Python did not properly handle XML entity declarations in plist files. An attacker could possibly use this vulnerability to perform an XML External Entity injection, resulting in a denial of service or information disclosure.
55bae84a27165496e4c61f96e67a29907c9b0b2752c81b4e650223bf8ebf69c7Debian Linux Security Advisory 5491-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
3a6cfcbdc911ffcc1d3db52f8089b5fad3df27b575010e4f29577ea3ede1e7d0TECHView LA5570 Wireless Gateway version 1.0.19_T53 suffers from directory traversal, privilege escalation, and information disclosure vulnerabilities.
d1257e7bf2cdf6fd21b1cc76b8960cbdf567e1b24499e73c14da1c1903331e35Remote disconnect exploit for AtlasVPN Linux client version 1.0.3 that will allow a remote website to extract a client's real IP address.
c22b568ca47d98ca9a5a328dfea2c54acf630205d9141efd30804e6c4fe23e1fDLINK DPH-400SE version FRU2.2.15.8 suffers from an information disclosure vulnerability.
e04c693b7f9f2fc627223d12d2bb72ef8540956fc844b65711e66b98c9fb70bbPlayTube version 3.0.1 suffers from an information leakage vulnerability.
6634c359fbe26d15c6168d3a3cc4055c0d3b3c5bc2b752d4130d644d141485bei-Gallery version 3.4 suffers from a database disclosure vulnerability.
4b8a837753cf89aafb9402b3feaaf42295a6b6cdf0c9c587a99043708662b845Human Resource PMS version 1.4 suffers from a database disclosure vulnerability.
57bdfb1d2e047a7027d3da9cb5073ca412afeb4304b018eb24ff2852b5d4c72aDebian Linux Security Advisory 5483-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
ebed94ee6ac4cac7ece2b82c3d9d5e59c2c4c1abfcc4c95b864d91e9024c2f1bGeeklog version 2.1.0b1 suffers from a database disclosure vulnerability.
e1960968a2002ca2ef10cf0d61448826dadf202337748e60da850b30c8698b71Forma LMS version 1.4 suffers from a database disclosure vulnerability.
4ac4e0bad7d2a5dab1dbea6491156c0298d7d086895c6fd5cb2f8db0445100b9FixBook Repair Shop Management Tool version 3.0 suffers from an information leakage vulnerability.
ddf7722992f5b066e8c74b71a59d38b69d0979349c7731ee3ad21f220ae825b3FixBook Repair Shop Management Tool version 2.2 suffers from an information leakage vulnerability.
cca9cd6b4f15f93c2ce4de83d177d9b79dd893c5d9b8597cc907d88aab5d43efDoorGets CMS version 12 suffers from an information leakage vulnerability.
1979fc108f5ff900725da4d3f94060a8f67d69123005ed02143164fae6fc34f9E-mailer Newsletter and Mailing System with Analytics + GEO location version 1.16 suffers from an information leakage vulnerability.
de698923ad14bb1bc258b0c0a5c562b59f67f25cf050cd857b5e718f2838903dFara Melk Estate CMS version 1.5.0 suffers from an information leakage vulnerability.
4af12b7169ce378353d4cf96d1c4969efdc42f2c001caa9c8366ef3c2c37e915DoorGets CMS version 7.0 suffers from an information leakage vulnerability.
e4dd4e13f6683cf82c0e69a415af646d4525941805e5d02a2a2a1438821ec8e2Debian Linux Security Advisory 5479-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
aee0f620a740c7ebf8d3a5388c4cb2acee86d35cf2761c6423c720350e0a280fDebian Linux Security Advisory 5478-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in bypass of sandbox restrictions, information disclosure, reduced cryptographic strength of the AES implementation, directory traversal or denial of service.
1abbda9face35cc55de373d200a91797c0b8a6083da1289cd62ef92eff8eca01ExcessWeb and Network CMS version 4.0 suffers from a database disclosure vulnerability.
3804ccc9e62f4f0b3d7f7e5d2646a5827031767b52189c5bfbdb8fee5663b88f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed