Big-ip (ltm, Aam, Afm, Apm, Asm, Link Controller, Pem, Websafe) Security Vulnerabilities

CVE-2024-29902 vulnerabilities

Vulnerabilities for packages: policy-controller, goreleaser, ko, zarf, falcoctl, slsa-verifier, zot, neuvector-sigstore-interface, gitsign, spire-server, vexctl, skaffold, apko, flux-source-controller, aactl, kubescape, falco, tkn, wolfictl, tekton-chains,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: nri-consul, kubernetes-dashboard, gpu-feature-discovery, harbor-cli, docker-credential-acr-env, tempo, tailscale, prometheus-nats-exporter, govulncheck, mage, memcached-exporter, gosu, bom, dagger, newrelic-nri-kube-events, jitsucom-bulker, vcluster,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: cortex, prometheus-bind-exporter, flannel-cni-plugin, goreleaser, nats, local-path-provisioner, sonobuoy, cni-plugins, gke-gcloud-auth-plugin, influx, nsc, go-md2man, protoc-gen-go-grpc, slsa-verifier, wait-for-port, sbom-scorecard, configmap-reload,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: cortex, prometheus-bind-exporter, flannel-cni-plugin, goreleaser, nats, local-path-provisioner, sonobuoy, cni-plugins, gke-gcloud-auth-plugin, influx, nsc, go-md2man, protoc-gen-go-grpc, slsa-verifier, wait-for-port, sbom-scorecard, configmap-reload,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: cortex, prometheus-bind-exporter, flannel-cni-plugin, goreleaser, nats, local-path-provisioner, sonobuoy, cni-plugins, gke-gcloud-auth-plugin, influx, nsc, go-md2man, protoc-gen-go-grpc, slsa-verifier, wait-for-port, sbom-scorecard, configmap-reload,...

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: policy-controller, gomplate, goreleaser, oauth2-proxy, melange, external-secrets-operator, rabbitmq-messaging-topology-operator, zarf, nerdctl, cilium, falcoctl, istio-pilot-agent, slsa-verifier, istio-cni, gitsign, keda, spire-server, cert-manager, argo-workflows,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: nfs-subdir-external-provisioner, ollama, k3s, prometheus-operator, telegraf, kubernetes-dashboard, kubeflow-katib, karpenter, cue, kubernetes-dashboard-metrics-scraper, memcached-exporter, apko, thanos-operator, spark-operator, flux-source-controller,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: caddy, nfs-subdir-external-provisioner, ollama, nats, k3s, prometheus-operator, telegraf, kubernetes-dashboard, kubeflow-katib, karpenter, cue, kubernetes-dashboard-metrics-scraper, memcached-exporter, apko, thanos-operator, spark-operator, flux-source-controller,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: caddy, nfs-subdir-external-provisioner, ferretdb, ollama, nats, traefik, k3s, telegraf, kubernetes-dashboard, eksctl, kubeflow-katib, nsc, docker-credential-acr-env, prometheus-nats-exporter, calico, memcached-exporter, apko, dockerize, spark-operator,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: src, prometheus, cortex, prometheus-adapter, prometheus-blackbox-exporter, goreleaser, oauth2-proxy, pulumi, pulumi-kubernetes-operator, up, telegraf, ko, kubeflow-katib, slsa-verifier, tctl, gitlab-pages, keda, k3d, calico, cert-manager, aws-efs-csi-driver,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: ollama, nats, traefik, telegraf, kubeflow-katib, calico, nginx-mainline, cue, memcached-exporter, spark-operator, flux-source-controller, envoy-ratelimit, nghttp2, bom, argo-cd, prometheus-elasticsearch-exporter, secrets-store-csi-driver, helm, pulumi-language-java,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: caddy, esbuild, ferretdb, nfs-subdir-external-provisioner, filebeat, flannel-cni-plugin, newrelic-prometheus-configurator, nats, nuclei, sonobuoy, k3s, prometheus-operator, telegraf, kubebuilder, kubernetes-dashboard, eksctl, kubeflow-katib, nri-apache,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: caddy, esbuild, ferretdb, nfs-subdir-external-provisioner, filebeat, flannel-cni-plugin, newrelic-prometheus-configurator, nats, nuclei, sonobuoy, k3s, prometheus-operator, telegraf, kubebuilder, kubernetes-dashboard, eksctl, kubeflow-katib, nri-apache,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: caddy, esbuild, ferretdb, nfs-subdir-external-provisioner, filebeat, flannel-cni-plugin, newrelic-prometheus-configurator, nats, nuclei, sonobuoy, k3s, prometheus-operator, telegraf, kubebuilder, kubernetes-dashboard, eksctl, kubeflow-katib, nri-apache,...

GHSA-MW99-9CHC-XW7R vulnerabilities

Vulnerabilities for packages: gomplate, goreleaser, pulumi, nuclei, pulumi-kubernetes-operator, zot, gitsign, apko, kubevela, pulumi-language-dotnet, go-licenses, bom, kots, argo-cd, scorecard, pulumi-language-yaml, src-fingerprint, pulumi-language-java, gitness, tekton-pipelines,...

GHSA-V53G-5GJP-272R vulnerabilities

Vulnerabilities for packages: helm-operator, cilium-cli, cert-manager, helm-push, istio-operator, trivy, kubescape, k8sgpt, kots, up, zarf, eksctl, k9s, zot, flux-source-controller, chartmuseum,...

CVE-2023-29402 vulnerabilities

Vulnerabilities for packages: policy-controller, kind,...

CVE-2023-29404 vulnerabilities

Vulnerabilities for packages: policy-controller, kind,...

GHSA-68G3-2P3G-W9PQ vulnerabilities

Vulnerabilities for packages: policy-controller, kind,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: nri-consul, kubernetes-dashboard, gpu-feature-discovery, harbor-cli, docker-credential-acr-env, tempo, tailscale, prometheus-nats-exporter, govulncheck, mage, memcached-exporter, gosu, bom, dagger, newrelic-nri-kube-events, jitsucom-bulker, vcluster,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: prometheus, policy-controller, filebeat, goreleaser, pulumi, crane, traefik, cadvisor, k3s, telegraf, up, zarf, nerdctl, eksctl, falcoctl, istio-pilot-agent, kubeflow-katib, slsa-verifier, zot, trivy, docker-credential-gcr, gitsign, helm-operator, argo-workflows,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: caddy, esbuild, ferretdb, nfs-subdir-external-provisioner, filebeat, flannel-cni-plugin, newrelic-prometheus-configurator, nats, nuclei, sonobuoy, k3s, prometheus-operator, telegraf, kubebuilder, kubernetes-dashboard, eksctl, kubeflow-katib, nri-apache,...

CVE-2023-49568 vulnerabilities

Vulnerabilities for packages: gomplate, goreleaser, pulumi, nuclei, pulumi-kubernetes-operator, zot, gitsign, apko, kubevela, pulumi-language-dotnet, go-licenses, bom, kots, argo-cd, scorecard, pulumi-language-yaml, src-fingerprint, pulumi-language-java, gitness, tekton-pipelines,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: caddy, nfs-subdir-external-provisioner, ferretdb, policy-controller, newrelic-prometheus-configurator, crane, traefik, sonobuoy, telegraf, kubebuilder, kubernetes-dashboard, eksctl, wait-for-port, confluent-common-docker, harbor-cli, docker-credential-acr-env,...

GHSA-PXHW-596R-RWQ5 vulnerabilities

Vulnerabilities for packages: local-static-provisioner, calico, ip-masq-agent, aws-ebs-csi-driver, kubernetes-csi-driver-hostpath, cluster-autoscaler, kubernetes-dns-node-cache, kubernetes, nodetaint, spark-operator,...

GHSA-XR7R-F8XQ-VFVV vulnerabilities

Vulnerabilities for packages: runc, cadvisor, k3s, syft, telegraf, zarf, nerdctl, zot, trivy, k3d, skaffold, ingress-nginx-controller, datadog-agent, grype, docker, kubescape, newrelic-infrastructure-agent, kots, wolfictl, ctop, kubernetes, buildkitd, k9s, kaniko, skopeo,...

CVE-2024-25943

iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking vulnerability in IPMI. A remote attacker could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable...

CVE-2023-4017

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color’, 'attra-size', and 'product-cata' parameters in versions up to, and including, 1.0.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

CVE-2023-4017

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color’, 'attra-size', and 'product-cata' parameters in versions up to, and including, 1.0.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

CVE-2023-4017 Goya <= 1.0.8.7 - Unauthenticated Reflected Cross-Site Scripting via Multiple Parameters

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color’, 'attra-size', and 'product-cata' parameters in versions up to, and including, 1.0.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

CVE-2023-4017 Goya <= 1.0.8.7 - Unauthenticated Reflected Cross-Site Scripting via Multiple Parameters

The Goya theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘attra-color’, 'attra-size', and 'product-cata' parameters in versions up to, and including, 1.0.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

CVE-2024-5889

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘country’ parameter in all versions up to, and including, 6.4.8 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-5889

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘country’ parameter in all versions up to, and including, 6.4.8 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-5889 Events Manager <= 6.4.8 - Reflected Cross-Site Scripting

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘country’ parameter in all versions up to, and including, 6.4.8 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-6405

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floating_social_buttons_option() function. This makes it possible for unauthenticated attackers to...

CVE-2024-6405

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floating_social_buttons_option() function. This makes it possible for unauthenticated attackers to...

CVE-2024-6405 Floating Social Buttons <= 1.5 - Cross-Site Request Forgery

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floating_social_buttons_option() function. This makes it possible for unauthenticated attackers to...

Polyfill.io Supply Chain Attack

The polyfill.js is a popular open-source library that supports older browsers. Thousands of sites embed it using the cdn[.]polyfill[.]io domain. In February 2024, a Chinese company (Funnull) bought the domain and the GitHub account. The company has modified Polyfill.js so malicious code would be...

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Open Container Initiative runc

Summary Multiple vulnerabilities in Open Container Initiative runc used by IBM InfoSphere Information Server were addressed. Vulnerability Details ** CVEID: CVE-2024-21626 DESCRIPTION: **Open Container Initiative runc could allow a remote attacker to bypass security restrictions, caused by an...

CVE-2024-38518

BigBlueButton is an open-source virtual classroom designed to help teachers teach and learners learn. An attacker with a valid join link to a meeting can trick BigBlueButton into generating a signed join link with additional parameters. One of those parameters may be "role=moderator", allowing an.....

CVE-2024-38518

BigBlueButton is an open-source virtual classroom designed to help teachers teach and learners learn. An attacker with a valid join link to a meeting can trick BigBlueButton into generating a signed join link with additional parameters. One of those parameters may be "role=moderator", allowing an.....

Metasploit Weekly Wrap-Up 06/28/2024

Unauthenticated Command Injection in Netis Router This week's Metasploit release includes an exploit module for an unauthenticated command injection vulnerability in the Netis MW5360 router which is being tracked as CVE-2024-22729. The vulnerability stems from improper handling of the password...

CVE-2024-38518 bbb-web API additional parameters considered

BigBlueButton is an open-source virtual classroom designed to help teachers teach and learners learn. An attacker with a valid join link to a meeting can trick BigBlueButton into generating a signed join link with additional parameters. One of those parameters may be "role=moderator", allowing an.....

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to open redirect vulnerability in VMware Tanzu Spring Framework ( CVE-2024-22243)

Summary Potential open redirect vulnerability in VMware Tanzu Spring Framework ( CVE-2024-22243) has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability has been addressed. Refer to details for additional information. Vulnerability Details ** CVEID:...

Grafana XSS via adding a link in General feature in github.com/grafana/grafana

Grafana XSS via adding a link in General feature in...

APM Server vulnerable to Insertion of Sensitive Information into Log File in github.com/elastic/apm-server

APM Server vulnerable to Insertion of Sensitive Information into Log File in...

3 More Plugins Infected in WordPress.org Supply Chain Attack Due to Compromised Developer Passwords

Update #1: As of 12:36PM EST, another plugin has been infected. We've updated the list below to include this fourth plugin and the plugins team has been notified. Update #2: As of 2:20 PM EST, two more plugins appear to have malicious commits, however, the releases have not officially been made...

Glastonbury ticket hijack vulnerability fixed

The Glastonbury ticket website was vulnerable to a relatively simple attack that that allowed ticket theft and data leakage. What’s the issue? An attacker could scrape collaborative ticket buying websites (e.g. Reddit) to gather people’s details, use a flaw in the registration process and session.....

New SnailLoad Attack Exploits Network Latency to Spy on Users' Web Activities

A group of security researchers from the Graz University of Technology have demonstrated a new side-channel attack known as SnailLoad that could be used to remotely infer a user's web activity. "SnailLoad exploits a bottleneck present on all Internet connections," the researchers said in a study...

Security Bulletin: Multiple vulnerabilities in IBM WebSphere Application Server Liberty and Apache Xerces C++ XML parser may affect IBM Storage Protect for Space Management

Summary IBM Storage Protect for Space Management can be affected by security flaws in IBM WebSphere Application Server Liberty and Apache Xerces C++ XML parser. The flaws can lead to server-side request forgery,, denial of service, and arbitrary code execution, as described in the "Vulnerability...