βΌ CVE-2022-41320 βΌ
π Read
via "National Vulnerability Database".
Veritas System Recovery (VSR) versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user (who has sufficient privileges) to access a network file system that they were not authorized to access.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39238 βΌ
π Read
via "National Vulnerability Database".
Arvados is an open source platform for managing and analyzing biomedical big data. In versions prior to 2.4.3, when using Portable Authentication Modules (PAM) for user authentication, if a user presented valid credentials but the account is disabled or otherwise not allowed to access the host (such as an expired password), it would still be accepted for access to Arvados. Other authentication methods (LDAP, OpenID Connect) supported by Arvados are not affected by this flaw. This issue is patched in version 2.4.3. Workaround for this issue is to migrate to a different authentication method supported by Arvados, such as LDAP.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39227 βΌ
π Read
via "National Vulnerability Database".
python-jwt is a module for generating and verifying JSON Web Tokens. Versions prior to 3.3.4 are subject to Authentication Bypass by Spoofing, resulting in identity spoofing, session hijacking or authentication bypass. An attacker who obtains a JWT can arbitrarily forge its contents without knowing the secret key. Depending on the application, this may for example enable the attacker to spoof other user's identities, hijack their sessions, or bypass authentication. Users should upgrade to version 3.3.4. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2022-2566 βΌ
π Read
via "National Vulnerability Database".
A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in `build_open_gop_key_points()` goes through all entries in the loop and adds `sc->ctts_data[i].count` to `sc->sample_offsets_count`. This can lead to an integer overflow resulting in a small allocation with `av_calloc(). An attacker can cause remote code execution via a malicious mp4 file. We recommend upgrading past commit c953baa084607dd1d84c3bfcce3cf6a87c3e6e05π Read
via "National Vulnerability Database".
βΌ CVE-2022-2347 βΌ
π Read
via "National Vulnerability Database".
There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download setup packet with a `wLength` greater than 4096 bytes, they can write beyond the heap-allocated request buffer.π Read
via "National Vulnerability Database".
βΌ CVE-2022-3236 βΌ
π Read
via "National Vulnerability Database".
A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40716 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Consul and Consul Enterprise up to 1.11.8, 1.12.4, and 1.13.1 do not check for multiple SAN URI values in a CSR on the internal RPC endpoint, enabling leverage of privileged access to bypass service mesh intentions. Fixed in 1.11.9, 1.12.5, and 1.13.2."π Read
via "National Vulnerability Database".
π1
ποΈ CI/CD servers readily breached by abusing SCM webhooks, researchers find ποΈ
π Read
via "The Daily Swig".
Webhook, line, and sinkerπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
CI/CD servers readily breached by abusing SCM webhooks, researchers find
Webhook, line, and sinker
β Morgan Stanley fined millions for selling off devices full of customer PII β
π Read
via "Naked Security".
Critical data on old disks always seems inaccessible if you really need it. But when you DON''T want it back, guess what happens...π Read
via "Naked Security".
Naked Security
Morgan Stanley fined millions for selling off devices full of customer PII
Critical data on old disks always seems inaccessible if you really need it. But when you DONβT want it back, guess what happensβ¦
π1
βΌ CVE-2022-40854 βΌ
π Read
via "National Vulnerability Database".
Tenda AC18 router contained a stack overflow vulnerability in /goform/fast_setting_wifi_setπ Read
via "National Vulnerability Database".
βΌ CVE-2022-40861 βΌ
π Read
via "National Vulnerability Database".
Tenda AC18 router V15.03.05.19 contains a stack overflow vulnerability in the formSetQosBand->FUN_0007db78 function with the request /goform/SetNetControlList/π Read
via "National Vulnerability Database".
π1
βΌ CVE-2022-38095 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.3 at WordPress.π Read
via "National Vulnerability Database".
βΌ CVE-2022-27492 βΌ
π Read
via "National Vulnerability Database".
An integer underflow in WhatsApp could have caused remote code execution when receiving a crafted video file.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40853 βΌ
π Read
via "National Vulnerability Database".
Tenda AC15 router V15.03.05.19 contains a stack overflow via the list parameter at /goform/fast_setting_wifi_setπ Read
via "National Vulnerability Database".
βΌ CVE-2022-38703 βΌ
π Read
via "National Vulnerability Database".
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Max Foundry Button Plugin MaxButtons plugin <= 9.2 at WordPressπ Read
via "National Vulnerability Database".
βΌ CVE-2022-36791 βΌ
π Read
via "National Vulnerability Database".
Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Awesome UG Torro Forms plugin <= 1.0.16 at WordPress.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40860 βΌ
π Read
via "National Vulnerability Database".
Tenda AC15 router V15.03.05.19 contains a stack overflow vulnerability in the function formSetQosBand->FUN_0007dd20 with request /goform/SetNetControlListπ Read
via "National Vulnerability Database".
βΌ CVE-2022-3144 βΌ
π Read
via "National Vulnerability Database".
The Wordfence Security Γ’β¬β Firewall & Malware Scan plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 7.6.0 via a setting on the options page due to insufficient escaping on the stored value. This makes it possible for authenticated users, with administrative privileges, to inject malicious web scripts into the setting that executes whenever a user accesses a page displaying the affected setting on sites running a vulnerable version.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40193 βΌ
π Read
via "National Vulnerability Database".
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in Awesome Filterable Portfolio plugin <= 1.9.7 at WordPress.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40865 βΌ
π Read
via "National Vulnerability Database".
Tenda AC15 and AC18 routers V15.03.05.19 contain heap overflow vulnerabilities in the function setSchedWifi with the request /goform/openSchedWifi/π Read
via "National Vulnerability Database".
βΌ CVE-2022-38085 βΌ
π Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) vulnerability in Read more By Adam plugin <= 1.1.8 at WordPress.π Read
via "National Vulnerability Database".