‼️CVE-2024-21911‼️
📖 Read more
Via "National Vulnerability Database"
TinyMCE versions before 5.6.0 are affected by a stored crosssite scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46739‼️
📖 Read more
Via "National Vulnerability Database"
CubeFS is an opensource cloudnative file storage system. A vulnerability was found during in the CubeFS master component in versions prior to 3.3.1 that could allow an untrusted attacker to steal user passwords by carrying out a timing attack. The root case of the vulnerability was that CubeFS used raw string comparison of passwords. The vulnerable part of CubeFS was the UserService of the master component. The UserService gets instantiated when starting the server of the master component. The issue has been patched in v3.3.1. For impacted users, there is no other way to mitigate the issue besides upgrading.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46740‼️
📖 Read more
Via "National Vulnerability Database"
CubeFS is an opensource cloudnative file storage system. Prior to version 3.3.1, CubeFS used an insecure random string generator to generate userspecific, sensitive keys used to authenticate users in a CubeFS deployment. This could allow an attacker to predict andor guess the generated string and impersonate a user thereby obtaining higher privileges. When CubeFS creates new users, it creates a piece of sensitive information for the user called the accessKey. To create the "accesKey", CubeFS uses an insecure string generator which makes it easy to guess and thereby impersonate the created user. An attacker could leverage the predictable random string generator and guess a users access key and impersonate the user to obtain higher privileges. The issue has been fixed in v3.3.1. There is no other mitigation than to upgrade.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46741‼️
📖 Read more
Via "National Vulnerability Database"
CubeFS is an opensource cloudnative file storage system. A vulnerability was found in CubeFS prior to version 3.3.1 that could allow users to read sensitive data from the logs which could allow them escalate privileges. CubeFS leaks configuration keys in plaintext format in the logs. These keys could allow anyone to carry out operations on blobs that they otherwise do not have permissions for. For example, an attacker that has succesfully retrieved a secret key from the logs can delete blogs from the blob store. The attacker can either be an internal user with limited privileges to read the log, or they can be an external user who has escalated privileges sufficiently to access the logs. The vulnerability has been patched in v3.3.1. There is no other mitigation than upgrading. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46742‼️
📖 Read more
Via "National Vulnerability Database"
CubeFS is an opensource cloudnative file storage system. CubeFS prior to version 3.3.1 was found to leak users secret keys and access keys in the logs in multiple components. When CubeCS creates new users, it leaks the users secret key. This could allow a lowerprivileged user with access to the logs to retrieve sensitive information and impersonate other users with higher privileges than themselves. The issue has been patched in v3.3.1. There is no other mitigation than upgrading CubeFS.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50253‼️
📖 Read more
Via "National Vulnerability Database"
Laf is a cloud development platform. In the Laf version design, the log uses communication with k8s to quickly retrieve logs from the container without the need for additional storage. However, in version 1.0.0beta.13 and prior, this interface does not verify the permissions of the pod, which allows authenticated users to obtain any pod logs under the same namespace through this method, thereby obtaining sensitive information printed in the logs. As of time of publication, no known patched versions exist.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-6004‼️
📖 Read more
Via "National Vulnerability Database"
A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2024-0217‼️
📖 Read more
Via "National Vulnerability Database"
A useafterfree flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impacted. As a result, some memory access could occur on memory regions that were previously freed. Once freed, a memory region can be reused for other allocations and any previously stored data in this memory region is considered lost.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2024-21622‼️
📖 Read more
Via "National Vulnerability Database"
Craft is a content management system. This is a potential moderate impact, low complexity privilege escalation vulnerability in Craft starting in 3.x prior to 3.9.6 and 4.x prior to 4.4.16 with certain user permissions setups. This has been fixed in Craft 4.4.16 and Craft 3.9.6. Users should ensure they are running at least those versions.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2024-21631‼️
📖 Read more
Via "National Vulnerability Database"
Vapor is an HTTP web framework for Swift. Prior to version 4.90.0, Vapor's vaporurlparserparse function uses uint16t indexes when parsing a URI's components, which may cause integer overflows when parsing untrusted inputs. This vulnerability does not affect Vapor directly but could impact applications relying on the URI type for validating user input. The URI type is used in several places in Vapor. A developer may decide to use URI to represent a URL in their application especially if that URL is then passed to the HTTP Client and rely on its public properties and methods. However, URI may fail to properly parse a valid albeit abnormally long URL, due to string ranges being converted to 16bit integers. An attacker may use this behavior to trick the application into accepting a URL to an untrusted destination. By padding the port number with zeros, an attacker can cause an integer overflow to occur when the URL authority is parsed and, as a result, spoof the host. Version 4.90.0 contains a patch for this issue. As a workaround, validate user input before parsing as a URI or, if possible, use Foundation's URL and URLComponents utilities. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2024-21633‼️
📖 Read more
Via "National Vulnerability Database"
Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are those in which an attacker may writeoverwrite any file that user has write access, and either user name is known or cwd is under user folder. Commit d348c43b24a9de350ff6e5bd610545a10c1fc712 contains a patch for this issue.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-46929‼️
📖 Read more
Via "National Vulnerability Database"
An issue discovered in GPAC 2.3DEVrev605gfc9e29089master in MP4Box in gfavcchangevui afltestgpacsrcmediatoolsavparsers.c687255 allows attackers to crash the application.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50090‼️
📖 Read more
Via "National Vulnerability Database"
Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POST request.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-5879‼️
📖 Read more
Via "National Vulnerability Database"
Users product account authentication data was stored in clear text in The Genie Company Aladdin Connect Mobile Application Version 5.65 Build 2075 and below on Android Devices. This allows the attacker, with access to the android device, to potentially retrieve users' clear text authentication credentials. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-5880‼️
📖 Read more
Via "National Vulnerability Database"
When the Genie Company Aladdin Connect garage door opener RetrofitKit Model ALDCM is placed into configuration mode the web servers Garage Door Control Module Setup page is vulnerable to XSS via a broadcast SSID name containing malicious code with client side Java Script andor HTML. This allows the attacker to inject malicious code with client side Java Script andor HTML into the users' web browser. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-5881‼️
📖 Read more
Via "National Vulnerability Database"
Unauthenticated access permitted to web interface page The Genie Company Aladdin Connect RetrofitKit Model ALDCM "Garage Door Control Module Setup" and modify the Garage door's SSID settings. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49442‼️
📖 Read more
Via "National Vulnerability Database"
Deserialization of Untrusted Data in jeecgFormDemoController in JEECG 4.0 and earlier allows attackers to run arbitrary code via crafted POST request.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-6338‼️
📖 Read more
Via "National Vulnerability Database"
Uncontrolled search path vulnerabilities were reported in the Lenovo Universal Device Client UDC that could allow an attacker with local access to execute code with elevated privileges.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-6540‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability was reported in the Lenovo Browser Mobile and Lenovo Browser HD Apps for Android that could allow an attacker to craft a payload that could result in the disclosure of sensitive information.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50256‼️
📖 Read more
Via "National Vulnerability Database"
Froxlor is open source server administration software. Prior to version 2.1.2, it was possible to submit the registration form with the essential fields, such as the username and password, left intentionally blank. This inadvertent omission allowed for a bypass of the mandatory field requirements e.g. surname, company name established by the system. Version 2.1.2 fixes this issue. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-5138‼️
📖 Read more
Via "National Vulnerability Database"
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.📖 Read more
Via "National Vulnerability Database"