CentOS: Security Advisory for expat (CESA-2022:1069)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Oracle Linux 7 : expat (ELSA-2022-1069)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-1069 advisory. - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910302 - CVE-2022-25236 expat: namespace-separator characters in 'xmlns:prefix'...

RHEL 7 : expat (RHSA-2022:1069)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1069 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code...

VulnCheck KEV: CVE-2019-1069

A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations...

RHEL 7 : kpatch-patch (RHSA-2021:1069)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1069 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

CVE-2021-1069

creationtimestamp| type| source ---|---|--- 2021-01-21 02:27:35+00:00| seen| https://t.me/cibsecurity/22480...

CVE-2020-1069

CVE-2020-1069 is a Microsoft SharePoint Server remote code execution vulnerability described as failing to properly identify and filter unsafe ASP.NET web controls. Public documents indicate an RCE could occur when processing unsafe ASP.NET controls (and related SharePoint package handling) with ...

CVE-2011-1069

creationtimestamp| type| source ---|---|--- 2020-02-06 00:35:07+00:00| seen| https://t.me/cibsecurity/9642...

CVE-2011-1069

CVE-2011-1069 affects PHPShop up to version 0.8.1, where the vulnerability is cross-site scripting (XSS). The available connected sources indicate the affected product and the XSS issue, with the NVD metrics showing a CVSS v2 base score of 4.3 (Medium) and CVSS v3.1 base score of 6.1 (Medium). Th...

CVE-2011-1069

PHPShop through 0.8.1 has XSS...

CVE-2019-1069

CVE-2019-1069 is a Windows Task Scheduler Privilege Escalation vulnerability in which the Task Scheduler Service inadequately validates certain file operations. The issue enables local privilege escalation when an attacker with unprivileged code execution on a victim system exploits the flaw. Mic...

Microsoft Windows Multiple Vulnerabilities (KB4503291)

This host is missing a critical security update according to Microsoft KB4503291 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

Microsoft Windows Task Scheduler CVE-2019-1069 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

CVE-2019-1069

creationtimestamp| type| source ---|---|--- 2019-05-23 08:09:25+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/nollapaivahaavoittuvuuksia-windows-10-kayttojarjestelmassa 2020-10-09 13:20:00+00:00| seen| MISP/fbff27c0-f30f-445c-92af-76781df1856d 2020-10-26 14:14:23+00:00| seen|...

Microsoft Windows Task Scheduler SetJobFileSecurityByName privilege escalation vulnerability

Overview Microsoft Windows contains a privilege escalation vulnerability in the way that theTask Scheduler SetJobFileSecurityByName function is used, which can allow an authenticated attacker to gain SYSTEM privileges on an affected system. Description Task Scheduler is a set of Microsoft Windows...

CVE-2018-1069

OpenShift OpenShift Enterprise 3.7 is affected by CVE-2018-1069, where container network filesystems (GlusterFS/NFS) can have their UserID/GroupID restrictions overridden because Openshift does not validate them before transmission over the network. This can allow an attacker to read or write arb...

CVE-2018-1069

GlusterFS and NFS network filesystems rely on File System User ID and Group ID information in order to restrict access to file shares. However, it's possible to overwrite the Openshift restrictions on container UserId and GroupdId as they are not validated before being sent over the Openshift...

CVE-2018-6653

comforte SWAP 1049 through 1069 and 20.0.0 through 21.5.3 as used in SSLOBJ on HPE NonStop SSL T0910, and in the comforte SecurCS, SecurFTP, SecurLib/SSL-AT, and SecurTN products, after executing the RELOAD CERTIFICATES command, does not ensure that clients use a strong TLS cipher suite, which...

Debian: Security Advisory (DLA-1069-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1067; CVE-2016-1068; CVE-2016-1069)

This vulnerability is an instance of a use after free vulnerability. A constraint for exploitation of this vulnerability is that the memory area of the freed object is reused by another object. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted...