‼ CVE-2023-40036 ‼
📖 Read
via "National Vulnerability Database".
Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in `CharDistributionAnalysis::HandleOneChar`. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time of publication, no known patches are available in existing versions of Notepad++.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-38710 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in Libreswan before 4.12. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID number of 0 or 1, an error notify INVALID_SPI is sent back. The notify payload's protocol ID is copied from the incoming packet, but the code that verifies outgoing packets fails an assertion that the protocol ID must be ESP (2) or AH(3) and causes the pluto daemon to crash and restart. NOTE: the earliest affected version is 3.20.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-36198 ‼
📖 Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in skalenetwork sgxwallet v.1.9.0 allows an attacker to cause a denial of service via the trustedBlsSignMessage function.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27932 ‼
📖 Read
via "National Vulnerability Database".
Stormshield Network Security (SNS) VPN SSL Client 2.1.0 through 2.8.0 has Insecure Permissions.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40571 ‼
📖 Read
via "National Vulnerability Database".
weblogic-framework is a tool for detecting weblogic vulnerabilities. Versions 0.2.3 and prior do not verify the returned data packets, and there is a deserialization vulnerability which may lead to remote code execution. When weblogic-framework gets the command echo, it directly deserializes the data returned by the server without verifying it. At the same time, the classloader loads a lot of deserialization calls. In this case, the malicious serialized data returned by the server will cause remote code execution. Version 0.2.4 contains a patch for this issue.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40580 ‼
📖 Read
via "National Vulnerability Database".
Freighter is a Stellar chrome extension. It may be possible for a malicious website to access the recovery mnemonic phrase when the Freighter wallet is unlocked. This vulnerability impacts access control to the mnemonic recovery phrase. This issue was patched in version 5.3.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40586 ‼
📖 Read
via "National Vulnerability Database".
OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of `log.Fatalf`, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an error in `mime.ParseMediaType`. This issue was patched in version 3.0.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40568 ‼
📖 Read
via "National Vulnerability Database".
** REJECT ** GitHub has been informed that the requestor is working with another CNA for these vulnerabilities.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-39707 ‼
📖 Read
via "National Vulnerability Database".
A stored cross-site scripting (XSS) vulnerability in Free and Open Source Inventory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Add Expense parameter under the Expense section.📖 Read
via "National Vulnerability Database".
🦿 Cisco Talos Research: New Lazarus Group Attack Malware Campaign Hits UK & US Businesses 🦿
📖 Read
via "Tech Republic".
The Cisco Talos report exposes new malware used by the group to target Internet backbone infrastructure and healthcare organizations in the U.K. and the U.S.📖 Read
via "Tech Republic".
TechRepublic
Cisco Talos Research: New Lazarus Group Attack Malware Campaign Hits UK & US Businesses
The Cisco Talos report exposes new malware used by the group to target Internet backbone infrastructure and healthcare organizations in the U.K. and the U.S.
‼ CVE-2023-39289 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2208.101 could allow an unauthenticated attacker to conduct an account enumeration attack due to improper configuration. A successful exploit could allow an attacker to access system information.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4524 ‼
📖 Read
via "National Vulnerability Database".
** REJECT ** CVE reject in favor of CVE-2023-40547📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4542 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in D-Link DAR-8000-10 up to 20230809. It has been classified as critical. This affects an unknown part of the file /app/sys1.php. The manipulation of the argument cmd with the input id leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-238047. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-39287 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 (22.24.5800.0) could allow an authenticated attacker with elevated privileges and internal network access to conduct a command argument injection due to insufficient parameter sanitization. A successful exploit could allow an attacker to access network information and to generate excessive network traffic.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-39291 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the Connect Mobility Router component of MiVoice Connect through 9.6.2304.102 could allow an authenticated attacker with elevated privileges to conduct an information disclosure attack due to improper configuration. A successful exploit could allow an attacker to view system information.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-39288 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an authenticated attacker with elevated privileges and internal network access to conduct a command argument injection due to insufficient parameter sanitization. A successful exploit could allow an attacker to access network information and to generate excessive network traffic.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-41121 ‼
📖 Read
via "National Vulnerability Database".
Array AG OS before 9.4.0.499 allows denial of service: remote attackers can cause system service processes to crash through abnormal HTTP operations.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4543 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in IBOS OA 4.5.5. It has been declared as critical. This vulnerability affects unknown code of the file ?r=recruit/contact/export&contactids=x. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-238048. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-34723 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in TechView LA-5570 Wireless Gateway 1.0.19_T53, allows attackers to gain sensitive information via /config/system.conf.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-36741 ‼
📖 Read
via "National Vulnerability Database".
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability📖 Read
via "National Vulnerability Database".
‼ CVE-2023-4544 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230809. It has been rated as problematic. This issue affects some unknown processing of the file /config/php.ini. The manipulation leads to direct request. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-238049 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.📖 Read
via "National Vulnerability Database".