‼ CVE-2023-28009 ‼
📖 Read
via "National Vulnerability Database".
HCL Workload Automation is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29835 ‼
📖 Read
via "National Vulnerability Database".
Insecure Permission vulnerability found in Wondershare Dr.Fone v.12.9.6 allows a remote attacker to escalate privileges via the service permission function.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26567 ‼
📖 Read
via "National Vulnerability Database".
Sangoma FreePBX 1805 through 2302 (when obtained as a ,.ISO file) places AMPDBUSER, AMPDBPASS, AMPMGRUSER, and AMPMGRPASS in the list of global variables. This exposes cleartext authentication credentials for the Asterisk Database (MariaDB/MySQL) and Asterisk Manager Interface. For example, an attacker can make a /ari/asterisk/variable?variable=AMPDBPASS API call.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27559 ‼
📖 Read
via "National Vulnerability Database".
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash when using a specially crafted subquery. IBM X-Force ID: 249196.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-30363 ‼
📖 Read
via "National Vulnerability Database".
vConsole v3.15.0 was discovered to contain a prototype pollution due to incorrect key and value resolution in setOptions in core.ts.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28008 ‼
📖 Read
via "National Vulnerability Database".
HCL Workload Automation 9.4, 9.5, and 10.1 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29442 ‼
📖 Read
via "National Vulnerability Database".
Zoho ManageEngine Applications Manager through 16390 allows DOM XSS.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-30846 ‼
📖 Read
via "National Vulnerability Database".
typed-rest-client is a library for Node Rest and Http Clients with typings for use with TypeScript. Users of the typed-rest-client library version 1.7.3 or lower are vulnerable to leak authentication data to 3rd parties. The flow of the vulnerability is as follows: First, send any request with `BasicCredentialHandler`, `BearerCredentialHandler` or `PersonalAccessTokenCredentialHandler`. Second, the target host may return a redirection (3xx), with a link to a second host. Third, the next request will use the credentials to authenticate with the second host, by setting the `Authorization` header. The expected behavior is that the next request will *NOT* set the `Authorization` header. The problem was fixed in version 1.8.0. There are no known workarounds.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-30845 ‼
📖 Read
via "National Vulnerability Database".
ESPv2 is a service proxy that provides API management capabilities using Google Service Infrastructure. ESPv2 2.20.0 through 2.42.0 contains an authentication bypass vulnerability. API clients can craft a malicious `X-HTTP-Method-Override` header value to bypass JWT authentication in specific cases.ESPv2 allows malicious requests to bypass authentication if both the conditions are true: The requested HTTP method is **not** in the API service definition (OpenAPI spec or gRPC `google.api.http` proto annotations, and the specified `X-HTTP-Method-Override` is a valid HTTP method in the API service definition. ESPv2 will forward the request to your backend without checking the JWT. Attackers can craft requests with a malicious `X-HTTP-Method-Override` value that allows them to bypass specifying JWTs. Restricting API access with API keys works as intended and is not affected by this vulnerability.Upgrade deployments to release v2.43.0 or higher to receive a patch. This release ensures that JWT authentication occurs, even when the caller specifies `x-http-method-override`. `x-http-method-override` is still supported by v2.43.0+. API clients can continue sending this header to ESPv2.📖 Read
via "National Vulnerability Database".
🕴 Google 2FA Syncing Feature Could Put Your Privacy at Risk 🕴
📖 Read
via "Dark Reading".
Researchers find that the encryption of a user's 2FA secrets are stripped after transportation to the cloud.📖 Read
via "Dark Reading".
Dark Reading
Google 2FA Syncing Feature Could Put Your Privacy at Risk
Researchers find that the encryption of a user's 2FA secrets are stripped after transportation to the cloud.
‼ CVE-2022-45876 ‼
📖 Read
via "National Vulnerability Database".
Versions of VISAM VBASE Automation Base prior to 11.7.5 may disclose information if a valid user opens a specially crafted file.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-1786 ‼
📖 Read
via "National Vulnerability Database".
Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27107 ‼
📖 Read
via "National Vulnerability Database".
Incorrect access control in the runReport function of MyQ Solution Print Server before 8.2 Patch 32 and Central Server before 8.2 Patch 22 allows users who do not have appropriate access rights to generate internal reports using a direct URL.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20853 ‼
📖 Read
via "National Vulnerability Database".
aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ asynchronized message process. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands to perform arbitrary system operation or disrupt service.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-24836 ‼
📖 Read
via "National Vulnerability Database".
SUNNET CTMS has vulnerability of path traversal within its file uploading function. An authenticated remote attacker with general user privilege can exploit this vulnerability to upload and execute scripts onto arbitrary directories to perform arbitrary system operation or disrupt service.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28697 ‼
📖 Read
via "National Vulnerability Database".
Moxa MiiNePort E1 has a vulnerability of insufficient access control. An unauthenticated remote user can exploit this vulnerability to perform arbitrary system operation or disrupt service.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-47758 ‼
📖 Read
via "National Vulnerability Database".
Nanoleaf firmware v7.1.1 and below is missing an SSL certificate, allowing attackers to execute arbitrary code via a DHCP hijacking attack.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26244 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR.S5W_L001.001.211214. The AppDMClient binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the digital signature check of AppUpgrade and .lge.upgrade.xml files, which are used during the firmware installation process. This indirectly allows an attacker to use a custom version of AppUpgrade and .lge.upgrade.xml files.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26243 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR.S5W_L001.001.211214. The decryption binary used to decrypt firmware files has an information leak that allows an attacker to read the AES key and initialization vector from memory. An attacker may exploit this to create custom firmware that may be installed in the IVI system. Then, an attacker may be able to install a backdoor in the IVI system that may allow him to control it, if it is connected to the Internet through Wi-Fi.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20852 ‼
📖 Read
via "National Vulnerability Database".
aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ interpreter. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands to perform arbitrary system operation or disrupt service.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26245 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR.S5W_L001.001.211214. The AppUpgrade binary file, which is used during the firmware installation process, can be modified by an attacker to bypass the version check in order to install any firmware version (e.g., newer, older, or customized). This indirectly allows an attacker to install custom firmware in the IVI system.📖 Read
via "National Vulnerability Database".