๐จ CVE-2023-32763
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.
๐@cveNotify
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.
๐@cveNotify
๐จ CVE-2023-33143
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-29345
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
๐@cveNotify
๐จ CVE-2023-33145
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-36787
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36741
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36562
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36735
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36022
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
๐จ CVE-2023-36034
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
๐@cveNotify
๐จ CVE-2023-36409
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-35618
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
๐@cveNotify
๐จ CVE-2023-36880
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-38174
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
๐@cveNotify
๐จ CVE-2023-43183
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account.
๐@cveNotify
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account.
๐@cveNotify
seclists.org
Full Disclosure: Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
๐จ CVE-2023-44031
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.
๐@cveNotify
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.
๐@cveNotify
seclists.org
Full Disclosure: Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
๐จ CVE-2023-49950
The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure.
๐@cveNotify
The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure.
๐@cveNotify
GitHub
cve-2023-49950/cve-2023-49950.md at main ยท shrikeinfosec/cve-2023-49950
A write-up detailing CVE-2023-49950. Affects Logpoint SIEM v6.1.0-v7.3.0 - shrikeinfosec/cve-2023-49950
๐จ CVE-2024-1064
A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service (DoS) condition via a modified host header
๐@cveNotify
A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service (DoS) condition via a modified host header
๐@cveNotify
GitLab
Server seems to be freezing after short while with 4.2.2 (#327) ยท Issues ยท Crafty Controller / Crafty 4 ยท GitLab
Quick Information Operating System: Ubuntu 22.04 (all patches installed) Install Type: I installed 4.2.2...