๐จ CVE-2021-38593
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).
๐@cveNotify
Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke).
๐@cveNotify
๐จ CVE-2023-32763
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.
๐@cveNotify
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.
๐@cveNotify
๐จ CVE-2023-33143
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-29345
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
๐@cveNotify
๐จ CVE-2023-33145
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-36787
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36741
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36562
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36735
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36022
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
๐จ CVE-2023-36034
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
๐จ CVE-2023-36409
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-35618
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36880
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-38174
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-43183
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account.
๐@cveNotify
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account.
๐@cveNotify
seclists.org
Full Disclosure: Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
๐จ CVE-2023-44031
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.
๐@cveNotify
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.
๐@cveNotify
seclists.org
Full Disclosure: Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
๐จ CVE-2023-49950
The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure.
๐@cveNotify
The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure.
๐@cveNotify
GitHub
cve-2023-49950/cve-2023-49950.md at main ยท shrikeinfosec/cve-2023-49950
A write-up detailing CVE-2023-49950. Affects Logpoint SIEM v6.1.0-v7.3.0 - shrikeinfosec/cve-2023-49950