23 matches found
Gitea Container Registry - Unauthorized Private Image Access
Gitea = 1.26.2. As a temporary workaround, set REQUIRESIGNINVIEW=true in gitea app.ini, though this blocks all anonymous access including public repos. reference: - https://blog.gitea.com/release-of-1.26.2/ - https://github.com/go-gitea/gitea/pull/37290 -...
CVE-2023-27771
An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCCsetupfull10819.exe file...
Linux Distros Unpatched Vulnerability : CVE-2020-27771
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the...
Ubuntu: Security Advisory (USN-7068-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-27771
CVE-2024-27771 affects Unitronics Unistream Unilogic; versions prior to 1.35.227 are vulnerable due to a path traversal flaw (CWE-22) that may allow remote code execution. Impact described as high severity with network access and privileges required low; potential full compromise of affected PLCs...
CVE-2024-27771 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2023-27771
creationtimestamp| type| source ---|---|--- 2023-04-04 18:31:45+00:00| seen| https://t.me/cibsecurity/61404...
CVE-2023-27771
An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCCsetupfull10819.exe file...
CVE-2023-27771
An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCCsetupfull10819.exe file...
CVE-2023-27771
An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote attacker to execute arbitrary commands via the wondershareCCsetupfull10819.exe file...
CVE-2023-27771
CVE-2023-27771 affects Wondershare Technology Co., Ltd. Creative Center v1.0.8. The vulnerability allows a remote attacker to execute arbitrary commands via the wondershareCC_setup_full10819.exe installer file. Public details describe the issue without detailing an official fixed version; some so...
SUSE CVE-2020-27771
In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...
CVE-2021-27771
User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. When interacting in a normal matter with the Sametime chat application, users hold a cookie containing their session ID SID. This value is also used when sending chat messages,...
CVE-2021-27771
CVE-2021-27771 affects HCL Sametime (version 11.6 per CNVD) where an attacker can modify the user SID stored in cookies to trigger arbitrary file upload or deletion of directories, leading to a Denial of Service. The vulnerability arises from SID handling within the Sametime chat/file transfer fl...
CVE-2021-27771 HCL Sametime is susceptible a file transfer service vulnerability
User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. When interacting in a normal matter with the Sametime chat application, users hold a cookie containing their session ID SID. This value is also used when sending chat messages,...
[SECURITY] [DLA 2602-1] imagemagick security update
Debian LTS Advisory DLA-2602-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany March 23, 2021 https://wiki.debian.org/LTS Package : imagemagick Version : 8:6.9.7.4+dfsg-11+deb9u12 CVE ID : CVE-2020-25666 CVE-2020-25675 CVE-2020-25676 CVE-2020-27754 CVE-2020-27757...
CVE-2020-27771
creationtimestamp| type| source ---|---|--- 2020-12-04 18:27:14+00:00| seen| https://t.me/cibsecurity/17154...
CVE-2020-27771
In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...
CVE-2020-27771
In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...
CVE-2020-27771
In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...