UBUNTU-CVE-2026-23740

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper writes its gdb init and output files to a directory that is world-writable for example /tmp, an attacker with write permissionwhich is a...

Linux Distros Unpatched Vulnerability : CVE-2026-23740

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper...

CVE-2024-39332

Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal, likely leading to remote code execution via modification of shell scripts on the server...

PT-2026-6747

Name of the Vulnerable Software and Affected Versions Asterisk versions prior to 20.7-cert9 Asterisk versions prior to 20.18.2 Asterisk versions prior to 21.12.1 Asterisk versions prior to 22.8.2 Asterisk versions prior to 23.2.2 Description Asterisk is a private branch exchange and telephony...

PT-2024-28453 · Webswing · Webswing

Name of the Vulnerable Software and Affected Versions: Webswing version 23.2.2 Description: Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal, potentially leading to remote code execution through modification of shell scripts on the server...

CVE-2023-4310

BeyondTrust Privileged Remote Access PRA and Remote Support RS versions 23.2.1 and 23.2.2 contain a command injection vulnerability which can be exploited through a malicious HTTP request. Successful exploitation of this vulnerability can allow an unauthenticated remote attacker to execute...

Command injection

BeyondTrust Privileged Remote Access PRA and Remote Support RS versions 23.2.1 and 23.2.2 contain a command injection vulnerability which can be exploited through a malicious HTTP request. Successful exploitation of this vulnerability can allow an unauthenticated remote attacker to execute...

BeyondTrust Privileged Remote Access and Remote Support Command Injection Vulnerability

BeyondTrust Remote Support and BeyondTrust Privileged Remote Access BeyondTrust PRA are both products of BeyondTrust, Inc.BeyondTrust Remote Support is a remote desktop access, help desk and collaboration software for BeyondTrust Remote Support is a remote desktop access, helpdesk and collaborati...

PT-2023-28697 · Beyondtrust · Beyondtrust Remote Support +1

Name of the Vulnerable Software and Affected Versions: BeyondTrust Privileged Remote Access PRA and Remote Support RS versions 23.2.1 through 23.2.2 Description: The issue is a command injection vulnerability that can be exploited through a malicious HTTP request, allowing an unauthenticated remo...

CVE-2022-28274

Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the...

CVE-2022-28276

Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

CVE-2022-28272

Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

CVE-2022-28275

Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

CVE-2022-23205 Adobe Photoshop Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe Photoshop versions 22.5.6 and earlierand 23.2.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Ericsson Erlang Trust Management Issue Vulnerability

Ericsson Erlang is a general-purpose concurrency-oriented programming language from Ericsson, Sweden. A trust management issue vulnerability exists in Ericsson Erlang/OTP before 23.2.2, which arises when an application accepts an invalid X.509 certificate chain and trusts it to a trusted root...