TP-Link TL-SC3130 version 1.6.18 suffers from an unauthenticated and unauthorized live RTSP stream disclosure.
c1f6460d6d0fe3d24bb2ab62579ffb0e90d7599107dd0c83091044e438b2b940Ekushey Project Manager CRM version 3.1 suffers from a persistent cross site scripting vulnerability.
47399dd8961ff86c3181323260463ac7ee0e4b157354c3902d27e649642eca6eLANGO Codeigniter Multilingual Script version 1.0 suffers from html injection and cross site scripting vulnerabilities.
1a7f46c5730e7ddc22cc65539b4922093c7ff1375817ea40f8170245c2f61333Dell EMC Secure Remote Services Virtual Edition versions prior to 3.32.00.08 suffer from improper file permission, plaintext password storage, and information exposure vulnerabilities.
84264bc2bf7265926ed83dcdaa2077e007732aa634829e2bdaf8b2daba109bbcThis write up provides a proof of concept with technical details for the git submodule arbitrary code execution vulnerability.
e19e46c66ca213278e2e5071ab8ca2967a9ee4af6d8e8a3c08f2175f8fa16633Ubuntu Security Notice 3796-1 - Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.
7f2b7512fc1a41ee8427d17e0d8d7c2e423c70ace9f4153eac8f82ff4fee82d0Ubuntu Security Notice 3795-1 - Peter Winter-Smith discovered that libssh incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.
0e050a6a0d7cf6f0174602482b0eb22f9ad32c0f80e78085e68ea3b88ae8b752Red Hat Security Advisory 2018-2938-01 - Red Hat OpenShift Application Runtimes provides an application platform that reduces the complexity of developing and operating applications for OpenShift as a containerized platform. This release of RHOAR Thorntail 2.2.0 serves as a replacement for RHOAR WildFly Swarm 7.1.0, and includes security and bug fixes and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include a traversal vulnerability.
c4ab1f675076791f9f8924f862c33bff93183dc8b2b2b92ae0f236fc39bfdd09Red Hat Security Advisory 2018-2925-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include bypass, denial of service, and use-after-free vulnerabilities.
b291292e8b9a806490b72134ba9b66f2e88a7525f3e9edbd3721a391565fdc2cUbuntu Security Notice 3789-2 - USN-3789-1 fixed a vulnerability in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled unpacking MEW executables. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
206c80a4e05aafc9049e999ec405f15a6ecbb3559b4da1a2a54b4b9e0d473f82Red Hat Security Advisory 2018-2933-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.
da44b65ca026d77d9fe69150ad4681fb84a6bfef262200d65ea41479d52319b6VMware Security Advisory 2018-0026 - VMware ESXi, Workstation, and Fusion updates address an out-of- bounds read vulnerability.
da260f8cb8def18b1b769444c5212f77ed32c628e0b1d023c320ba2473730ba3Red Hat Security Advisory 2018-2930-01 - Red Hat JBoss Operations Network is a Middleware management solution that provides a single point of control to deploy, manage, and monitor JBoss Enterprise Middleware, applications, and services. This JBoss Operations Network 3.3.11 release serves as a replacement for JBoss Operations Network 3.3.10, and includes several bug fixes. Issues addressed include code execution, denial of service, and deserialization vulnerabilities.
f73dfdf3595c1e05ec943ef937169cb9b4c82c0192b052aab2e0e1a86aedb6bfRed Hat Security Advisory 2018-2927-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include cross site scripting, denial of service, deserialization, information leakage, and remote SQL injection vulnerabilities.
28fc612d55914841a03c100791e1a5e510f200a646c0e0c2cab3742c7ef9004fRed Hat Security Advisory 2018-2924-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.
59027949276915cbfb6cb27563c954a32cb80ddf634724ff050f8bc89143be4dUbuntu Security Notice 3794-1 - It was discovered that MoinMoin incorrectly handled certain inputs. An attacker could possibly use this issue to access sensitive information.
ac0ae34a8cbc153229148a26ebb9bce5912480962a6a059817df941f8dd353d2Time and Expense Management System version 3.0 suffers from a cross site request forgery vulnerability.
ba7f46c02c7ebf452841ce00d148b5c187199e9b03f01e2cc69eb5adfdb2b30bManageEngine OPManager version 12.3 suffers from a persistent cross site scripting vulnerability.
4accf5407115e8f4a22709ea0edfcf808b651f9a993ef1576a3d1abecdc13910Any Sound Recorder version 2.93 SEH buffer overflow proof of concept exploit.
89878b2b1e3dd67d5c191683bac2c5c6e2fe1370f1d2151956fcd2a4c25d32f0
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed