Debian DSA-5581-1 : firefox-esr - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5581 advisory. The WebGL DrawElementsInstanced method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an...
8.8CVSS
9.1AI Score
0.005EPSS
[2.28-225.0.4.6] - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2023-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaih_inet (RHEL-2435). - CVE-2023-4813: work around RHEL-8 limitation in test (RHEL-2435). Reviewed by: Jose...
7.8CVSS
7.6AI Score
0.014EPSS
Exploit for Deserialization of Untrusted Data in Apache Log4J
log4j-shell-poc A Proof-Of-Concept for the recently found...
10CVSS
8.8AI Score
0.976EPSS
Exploit for Insecure Storage of Sensitive Information in Ibm I Access Client Solutions
CVE-2023-45184 IBM i Access Client Solutions < 1.1.9.4 -...
7.5CVSS
7.5AI Score
0.001EPSS
Ubuntu 20.04 LTS / 22.04 LTS : LibreOffice vulnerabilities (USN-6546-2)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6546-2 advisory. Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute...
8.8CVSS
9.3AI Score
0.001EPSS
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at...
9.8CVSS
0.001EPSS
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at...
9.8CVSS
9.7AI Score
0.001EPSS
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at...
9.8CVSS
8.6AI Score
0.001EPSS
Unveiling NKAbuse: a new multiplatform threat abusing the NKN protocol
During an incident response performed by Kaspersky's Global Emergency Response Team (GERT) and GReAT, we uncovered a novel multiplatform threat named "NKAbuse". The malware utilizes NKN technology for data exchange between peers, functioning as a potent implant, and equipped with both flooder and.....
10CVSS
7.7AI Score
0.975EPSS
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services |.....
7.5CVSS
7.7AI Score
0.001EPSS
Siemens OPC UA Implementation in SINUMERIK ONE and SINUMERIK MC
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services |.....
7.5CVSS
8AI Score
0.001EPSS
Siemens User Management Component (UMC)
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services |.....
8.8CVSS
7.9AI Score
0.001EPSS
Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at...
10AI Score
0.001EPSS
Releases Ubuntu 22.04 LTS Ubuntu 20.04 LTS Packages libreoffice - Office productivity suite Details USN-6546-1 fixed vulnerabilities in LibreOffice. This update provides the corresponding updates for Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. Original advisory details: Reginaldo Silva discovered...
8.8CVSS
9.3AI Score
0.001EPSS
FakeSG campaign, Akira ransomware and AMOS macOS stealer
Introduction The crimeware landscape is diverse. Cybercriminals try to capitalize on their victims in every possible way by distributing various types of malware designed for different platforms. In recent months, we have written private reports on a wide range of topics, such as new...
7.1AI Score
Unspecified Vulnerability in Siemens User Management Component (UMC)
Opcenter Quality is a quality management system (QMS) that enables organizations to safeguard compliance, optimize quality, reduce the cost of defects and rework, and achieve operational excellence by improving process stability. simatic pcs neo is a distributed control system (DCS). the SINUMERIK....
7.1CVSS
6.8AI Score
0.001EPSS
Siemens User Management Component (UMC) Classic Buffer Overflow Vulnerability
Opcenter Quality is a quality management system (QMS) that enables organizations to safeguard compliance, optimize quality, reduce the cost of defects and rework, and achieve operational excellence by improving process stability. simatic pcs neo is a distributed control system (DCS). the SINUMERIK....
7.5CVSS
7.2AI Score
0.0005EPSS
Siemens SINUMERIK ONE and SINUMERIK-MC Denial of Service Vulnerability
SINUMERIK MC is a CNC system for customized machine solutions. SINUMERIK ONE is a digital native CNC. A denial of service vulnerability exists in Siemens SINUMERIK ONE and SINUMERIK-MC due to a failure of an affected device to methodically and correctly process specially crafted packets sent to...
7.5CVSS
6.8AI Score
0.001EPSS
Siemens User Management Component (UMC) Input Validation Improperity Vulnerability
Opcenter Quality is a quality management system (QMS) that enables organizations to safeguard compliance, optimize quality, reduce the cost of defects and rework, and achieve operational excellence by improving process stability. simatic pcs neo is a distributed control system (DCS). the SINUMERIK....
7.5CVSS
6.8AI Score
0.0005EPSS
Siemens User Management Component (UMC) Cross-Site Scripting Vulnerability
Opcenter Quality is a quality management system (QMS) that enables organizations to safeguard compliance, optimize quality, reduce the cost of defects and rework, and achieve operational excellence by improving process stability. simatic pcs neo is a distributed control system (DCS). the SINUMERIK....
7.1CVSS
6.1AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All ver...
7.5CVSS
7.2AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All ver...
7.5CVSS
7.5AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All ver...
7.5CVSS
7.5AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All ver...
8.8CVSS
7AI Score
0.001EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All ver...
7.1CVSS
5.8AI Score
0.0005EPSS
Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attacker to create a denial of service condition. A restart is needed to restore normal...
7.5CVSS
7.4AI Score
0.001EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI /Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally...
7.5CVSS
7.8AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI /Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally...
7.5CVSS
7.5AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI /Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally...
8.8CVSS
8.4AI Score
0.001EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI /Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally...
7.5CVSS
7.8AI Score
0.0005EPSS
A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), SINUMERIK Integrate RunMyHMI /Automotive (All versions), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally...
6.1CVSS
6.2AI Score
0.0005EPSS
8.8CVSS
8.8AI Score
0.001EPSS
[SECURITY] [DSA 5574-1] libreoffice security update
Debian Security Advisory DSA-5574-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 11, 2023 https://www.debian.org/security/faq Package : libreoffice CVE ID : CVE-2023-6185 CVE-2023-6186...
8.8CVSS
7.3AI Score
0.001EPSS
8.8CVSS
8.9AI Score
0.001EPSS
Debian DSA-5574-1 : libreoffice - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5574 advisory. Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary...
8.8CVSS
9.3AI Score
0.001EPSS
Releases Ubuntu 23.10 Ubuntu 23.04 Packages libreoffice - Office productivity suite Details Reginaldo Silva discovered that LibreOffice incorrectly handled filenames when passing embedded videos to GStreamer. If a user were tricked into opening a specially crafted file, a remote attacker...
8.8CVSS
9.2AI Score
0.001EPSS
8.8CVSS
8.9AI Score
0.001EPSS
Ubuntu 23.04 / 23.10 : LibreOffice vulnerabilities (USN-6546-1)
The remote Ubuntu 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6546-1 advisory. Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary...
8.8CVSS
9.3AI Score
0.001EPSS
Summary Urllib is used by IBM Cloud Pak for Data Scheduling as part of the Ansible operator used for installation of the Scheduler. Vulnerability Details ** CVEID: CVE-2019-11236 DESCRIPTION: **Python urllib3 is vulnerable to CRLF injection, caused by improper validation of user-supplied input...
7.5CVSS
7.5AI Score
0.004EPSS
Summary Ncurses is packaged, but not used, in the ibm-cpd-scheduling-operator image. Vulnerability Details ** CVEID: CVE-2023-29491 DESCRIPTION: **ncurses is vulnerable to a denial of service, caused by a memory corruption flaw when used by a setuid application. By sending a specially crafted...
7.8CVSS
6.7AI Score
0.0004EPSS
Summary Kubectl is used by IBM Cloud Pak for Data Scheduling as part of the Ansible operator used for installation of the Scheduler. CVE-2019-11250. Vulnerability Details ** CVEID: CVE-2019-11250 DESCRIPTION: **Kubernetes could allow a local authenticated attacker to obtain sensitive information,.....
6.5CVSS
6AI Score
0.001EPSS
Summary Golang compiler is used to build the binaries of IBM Cloud Pak for Data Scheduling. Vulnerability Details ** CVEID: CVE-2023-39318 DESCRIPTION: **Golang Go is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the html/template package. A remote...
7.5CVSS
7.7AI Score
0.001EPSS
Summary Golang compiler is used by IBM Cloud Pak for Data Scheduling to build the scheduler binaries. Vulnerability Details ** CVEID: CVE-2023-29406 DESCRIPTION: **Golang Go is vulnerable to HTTP header injection, caused by improper contents validation of Host header by the HTTP/1 client. By...
6.5CVSS
7.6AI Score
0.001EPSS
Summary Opm is used by IBM Cloud Pak for Data Scheduling as part of the ibm-cpd-scheduler-operator-catalog image used for installation of the Scheduler. Vulnerability Details ** CVEID: CVE-2023-25173 DESCRIPTION: **containerd could allow a local authenticated attacker to bypass security...
7.8CVSS
7.2AI Score
0.001EPSS
Summary Python is used by IBM Cloud Pak for Data as part of the Ansible operator for installation. Vulnerability Details ** CVEID: CVE-2022-40897 DESCRIPTION: **Pypa Setuptools is vulnerable to a denial of service, caused by improper input validation. By sending request with a specially crafted...
5.9CVSS
6.8AI Score
0.005EPSS
Summary Opm is used by IBM Cloud Pak for Data Scheduling as part of the ibm-cpd-scheduler-operator-catalog image used for installation of the Scheduler. Vulnerability Details ** CVEID: CVE-2023-2253 DESCRIPTION: **Distribution is vulnerable to a denial of service, caused by improper input...
6.5CVSS
7AI Score
0.001EPSS
New macOS Trojan-Proxy piggybacking on cracked software
Illegally distributed software historically has served as a way to sneak malware onto victims' devices. Oftentimes, users are not willing to pay for software tools they need, so they go searching the Web for a "free lunch". They are an excellent target for cybercriminals who realize that an...
7.7AI Score
A low-privileged remote attacker could exploit the vulnerability and inject additional system commands via file system libraries which could give the attacker full control of the...
8.8CVSS
8.8AI Score
0.001EPSS
BlueNoroff: new Trojan attacking macOS users
We recently discovered a new variety of malicious loader that targets macOS, presumably linked to the BlueNoroff APT gang and its ongoing campaign known as RustBucket. The threat actor is known to attack financial organizations, particularly companies, whose activity is in any way related to...
7.1AI Score
Amazon Linux 2 : glibc (ALAS-2023-2371)
The version of glibc installed on the remote host is prior to 2.26-57. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2371 advisory. The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the...
9.8CVSS
9.3AI Score
0.017EPSS