โผ CVE-2023-29529 โผ
๐ Read
via "National Vulnerability Database".
matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker will not appear to be participating in the call. This attack is possible because matrix-js-sdk's group call implementation accepts incoming direct calls from other users, even if they have not yet declared intent to participate in the group call, as a means of resolving a race condition in call setup. Affected versions do not restrict access to the user's outbound media in this case. Legacy 1:1 calls are unaffected. This is fixed in matrix-js-sdk 24.1.0. As a workaround, users may hold group calls in private rooms where only the exact users who are expected to participate in the call are present.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-27914 โผ
๐ Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodeskรยฎ AutoCADรยฎ 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-27912 โผ
๐ Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodeskรยฎ AutoCADรยฎ 2023 can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29018 โผ
๐ Read
via "National Vulnerability Database".
The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the lax permissions configured on `open-feature-operator-controller-manager` to escalate the privileges of any SA in the cluster. The increased privileges could be used to modify cluster state, leading to DoS, or read sensitive data, including secrets. Version 0.2.32 mitigates this issue by restricting the resources the `open-feature-operator-controller-manager` can modify.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29013 โผ
๐ Read
via "National Vulnerability Database".
Traefik (pronounced traffic) is a modern HTTP reverse proxy and load balancer for deploying microservices. There is a vulnerability in Go when parsing the HTTP headers, which impacts Traefik. HTTP header parsing could allocate substantially more memory than required to hold the parsed headers. This behavior could be exploited to cause a denial of service. This issue has been patched in versions 2.9.10 and 2.10.0-rc2.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2073 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Login.php. The manipulation of the argument password leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-226051.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29199 โผ
๐ Read
via "National Vulnerability Database".
There exists a vulnerability in source code transformer (exception sanitization logic) of vm2 for versions up to 3.9.15, allowing attackers to bypass `handleException()` and leak unsanitized host exceptions which can be used to escape the sandbox and run arbitrary code in host context. A threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox. This vulnerability was patched in the release of version `3.9.16` of `vm2`.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2033 โผ
๐ Read
via "National Vulnerability Database".
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29194 โผ
๐ Read
via "National Vulnerability Database".
Vitess is a database clustering system for horizontal scaling of MySQL. Users can either intentionally or inadvertently create a keyspace containing `/` characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces using `vtctldclient GetKeyspaces` will also return an error. Note that all other keyspaces can still be administered using the CLI (vtctldclient). This issue is fixed in version 16.0.1. As a workaround, delete the offending keyspace using a CLI client (vtctldclient).๐ Read
via "National Vulnerability Database".
โผ CVE-2023-27913 โผ
๐ Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodeskรยฎ AutoCADรยฎ 2023 can be used to cause an Integer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data, or execute arbitrary code in the context of the current process.๐ Read
via "National Vulnerability Database".
โ๏ธ Why is โJuice Jackingโ Suddenly Back in the News? โ๏ธ
๐ Read
via "Krebs on Security".
KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about "juice jacking," a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk. It remains unclear what may have prompted the alerts, but the good news is that there are some fairly basic things you can do to avoid having to worry about juice jacking.๐ Read
via "Krebs on Security".
Krebs on Security
Why is โJuice Jackingโ Suddenly Back in the News?
KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about "juice jacking," a term first coined here in 2011 to describe a potential threatโฆ
๐ด Russian SolarWinds Culprits Launch Fresh Barrage of Espionage Cyberattacks ๐ด
๐ Read
via "Dark Reading".
The threat group behind the SolarWinds supply-chain attacks is back with new tools for spying on officials in NATO countries and Africa.๐ Read
via "Dark Reading".
Dark Reading
Russian SolarWinds Culprits Launch Fresh Barrage of Espionage Cyberattacks
The threat group behind the SolarWinds supply chain attacks is back with new tools for spying on officials in NATO countries and Africa.
โผ CVE-2023-2076 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability classified as problematic was found in Campcodes Online Traffic Offense Management System 1.0. This vulnerability affects unknown code of the file /classes/Users.phpp. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-226054 is the identifier assigned to this vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-27654 โผ
๐ Read
via "National Vulnerability Database".
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a escalation of privileges via the TTMultiProvider component.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-25597 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability in the web conferencing component of Mitel MiCollab through 9.6.2.9 could allow an unauthenticated attacker to download a shared file via a crafted request - including the exact path and filename - due to improper authentication control. A successful exploit could allow access to sensitive information.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2004 โผ
๐ Read
via "National Vulnerability Database".
An integer overflow vulnerability was discovered in Freetype in tt_hvadvance_adjust() function in src/truetype/ttgxvar.c.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29085 โผ
๐ Read
via "National Vulnerability Database".
An issue was discovered in Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP status line.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2075 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability classified as critical has been found in Campcodes Online Traffic Offense Management System 1.0. This affects an unknown part of the file /admin/offenses/view_details.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-226053 was assigned to this vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2077 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, has been found in Campcodes Online Traffic Offense Management System 1.0. This issue affects some unknown processing of the file /admin/offenses/view_details.php. The manipulation of the argument id leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-226055.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-29088 โผ
๐ Read
via "National Vulnerability Database".
An issue was discovered in Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Session-Expires header.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2074 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-226052.๐ Read
via "National Vulnerability Database".