[SECURITY] Fedora 37 Update: cups-2.4.6-1.fc37
CUPS printing system provides a portable printing layer for UNIX=EF=BF=BD=EF=BF=BD operating systems. It has been developed by Apple In c. to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line...
7.1CVSS
6.9AI Score
0.0004EPSS
An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an...
3.5CVSS
0.0004EPSS
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked...
8.2CVSS
0.001EPSS
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is...
6.1CVSS
0.001EPSS
An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an...
3.5CVSS
4.2AI Score
0.0004EPSS
Alaris Systems Manager does not perform input validation during the Device Import...
6.9CVSS
6.7AI Score
0.0004EPSS
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is...
6.1CVSS
6AI Score
0.001EPSS
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked...
8.2CVSS
8AI Score
0.001EPSS
A GRE dataset file within Systems Manager can be tampered with and distributed to...
6.7CVSS
6.5AI Score
0.0004EPSS
Alaris Systems Manager does not perform input validation during the Device Import...
6.9CVSS
0.0004EPSS
A GRE dataset file within Systems Manager can be tampered with and distributed to...
6.7CVSS
0.0004EPSS
An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an...
3.5CVSS
5.2AI Score
0.0004EPSS
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is...
6.1CVSS
6.7AI Score
0.001EPSS
Alaris Systems Manager does not perform input validation during the Device Import...
6.9CVSS
7.4AI Score
0.0004EPSS
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked...
8.2CVSS
8.6AI Score
0.001EPSS
A GRE dataset file within Systems Manager can be tampered with and distributed to...
6.7CVSS
7.1AI Score
0.0004EPSS
The configuration from the PCU can be modified without authentication using physical connection to the...
6.8CVSS
0.001EPSS
The configuration from the PCU can be modified without authentication using physical connection to the...
6.8CVSS
6.5AI Score
0.001EPSS
The configuration from the PCU can be modified without authentication using physical connection to the...
6.8CVSS
7.2AI Score
0.001EPSS
CVE-2023-30565 CQI Data Sniffing
An insecure connection between Systems Manager and CQI Reporter application could expose infusion data to an...
3.5CVSS
4.4AI Score
0.0004EPSS
CVE-2023-30564 Stored Cross-Site Scripting on Device Import Functionality
Alaris Systems Manager does not perform input validation during the Device Import...
6.9CVSS
6.9AI Score
0.0004EPSS
CVE-2023-30563 Stored Cross-Site Scripting on User Import Functionality
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked...
8.2CVSS
8.3AI Score
0.001EPSS
CVE-2023-30562 Lack of Dataset Integrity Checking
A GRE dataset file within Systems Manager can be tampered with and distributed to...
3CVSS
6.7AI Score
0.0004EPSS
CVE-2023-30561 Lack of Cryptographic Security of IUI Bus
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is...
6.1CVSS
6.2AI Score
0.001EPSS
CVE-2023-30560 PCU Configuration Lacks Authentication
The configuration from the PCU can be modified without authentication using physical connection to the...
6.8CVSS
6.8AI Score
0.001EPSS
The firmware update package for the wireless card is not properly signed and can be...
5.7CVSS
0.0004EPSS
The firmware update package for the wireless card is not properly signed and can be...
5.7CVSS
5.7AI Score
0.0004EPSS
The firmware update package for the wireless card is not properly signed and can be...
5.7CVSS
6.6AI Score
0.0004EPSS
CVE-2023-30559 Wireless Card Firmware Improperly Signed
The firmware update package for the wireless card is not properly signed and can be...
5.2CVSS
6AI Score
0.0004EPSS
7.1AI Score
(RHSA-2023:4037) Important: bind9.16 security update
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security....
7.5AI Score
0.001EPSS
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Thunderbird vulnerabilities (USN-6214-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 22.10 / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6214-1 advisory. The error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses to protect prompts...
9.8CVSS
8.9AI Score
0.001EPSS
Releases Ubuntu 23.04 Ubuntu 22.10 Ubuntu 22.04 LTS Ubuntu 20.04 LTS Packages thunderbird - Mozilla Open Source mail and newsgroup client Details Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an...
9.8CVSS
8.8AI Score
0.001EPSS
(RHSA-2023:4005) Important: bind security update
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security....
6.9AI Score
0.001EPSS
[SECURITY] Fedora 38 Update: python-managesieve-0.7.1-6.fc38
This module allows accessing a Sieve-Server for managing Sieve scripts ther e. It is accompanied by a simple yet functional user application =EF=BF=BD=EF...
7AI Score
[SECURITY] Fedora 37 Update: python-managesieve-0.7.1-6.fc37
This module allows accessing a Sieve-Server for managing Sieve scripts ther e. It is accompanied by a simple yet functional user application =EF=BF=BD=EF...
7AI Score
BugChecker - SoftICE-like Kernel Debugger For Windows 11
Introduction BugChecker is a SoftICE-like kernel and user debugger for Windows 11 (and Windows XP as well: it supports Windows versions from XP to 11, both x86 and x64). BugChecker doesn't require a second machine to be connected to the system being debugged, like in the case of WinDbg and KD....
7AI Score
Fedora: Security Advisory for cups (FEDORA-2023-fac5968b55)
The remote host is missing an update for...
7.1CVSS
7.2AI Score
0.0004EPSS
Fedora: Security Advisory for bind (FEDORA-2023-1d526d551c)
The remote host is missing an update for...
7.5CVSS
8.1AI Score
0.001EPSS
"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external...
5.5CVSS
5AI Score
0.0004EPSS
"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external...
5.5CVSS
5AI Score
0.0004EPSS
"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external...
5.5CVSS
4.9AI Score
0.0004EPSS
"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external...
5.3AI Score
0.0004EPSS
[SECURITY] Fedora 37 Update: bind-9.18.16-1.fc37
BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS.....
7.5CVSS
7AI Score
0.001EPSS
[SECURITY] Fedora 38 Update: cups-2.4.6-1.fc38
CUPS printing system provides a portable printing layer for UNIX=EF=BF=BD=EF=BF=BD operating systems. It has been developed by Apple In c. to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line...
7.1CVSS
6.9AI Score
0.0004EPSS
Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series Use of Hard-Coded Credentials (CVE-2023-2061)
Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via...
7.5CVSS
7.8AI Score
0.003EPSS
Unrestricted Upload of File with Dangerous Type vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to cause information disclosure,...
7.3CVSS
7.2AI Score
0.001EPSS
Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series Missing Password Field Masking (CVE-2023-2062)
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series...
6.2CVSS
6.9AI Score
0.001EPSS
Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series Weak Password Requirements (CVE-2023-2060)
Weak Password Requirements vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to access to the module via FTP by dictionary attack or...
7.5CVSS
7.7AI Score
0.003EPSS
[SECURITY] Fedora 38 Update: bind-9.18.16-1.fc38
BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS.....
7.5CVSS
7.5AI Score
0.001EPSS