Details:

Vidyo is a platform from Vidyo, USA that is used to support video conferencing. 

Vidyo update 02-09-/D has a clickjacking flaw. The weakness stems from X-Frame-Options and other methods of security not being set. This weakness can be used by…

 

Details:

Jsonpickle is a Python-based program developed by Jsonpickle's personal creator to support Python object serialization with Json. 

Release 1.4.1 and previous versions of jsonpickle provide a code problem flaw that enables remote code execution…

 

Details:

The Egavilan Media EGM Address Book is a communication information management site (address book) coordinated in the United States by Egavilan Media. 

Version 1.0 of the EGavilan Media EGM Address Book has a SQL injection flaw. This vulnerability…

 

Details:

Chongqing Yishu Information Technology Co., Ltd. (abbreviation: Yishu Online, Chongqing Yishu) is devoted to the construction of the company website, the production of the Internet application infrastructure and the promotion of the network.…

 

Details:

Centered on the new ThinkPHP V6, open source using the most relaxed MIT protocol, ThinkAdmin is a background management system developed. 

ThinkAdmin has an authentication flaw that is illegal. Bypass login vulnerabilities may be exploited by…

Details:

An update that solves two vulnerabilities and has three fixes is now available.

This update for tomcat fixes the following issues:
Security issues fixed:

  o CVE-2020-13943: Fixed a HTTP/2 Request mix-up (bsc#1177582).
  o CVE-2020-17527: Fixed…

 

Details:

This update for python-paramiko fixes the following issue:

  o CVE-2018-1000805: Fixed an authentication bypass in auth_handler.py (bsc#
    1111151).

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation…