Security update for connman (important)

openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2023:0370-1 Rating: important References: 1210395 Cross-References: CVE-2023-28488 CVSS scores: CVE-2023-28488 NVD : 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP4...

Security update for connman (important)

openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2023:0369-1 Rating: important References: 1210395 Cross-References: CVE-2023-28488 CVSS scores: CVE-2023-28488 NVD : 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP5...

Ubuntu: Security Advisory (USN-6236-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : ConnMan vulnerabilities (USN-6236-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6236-1 advisory. It was discovered that ConnMan could be made to write out of bounds. A remote attacker could possibly use thi...

Debian DSA-5416-1 : connman - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5416 advisory. It was discovered that there was a potential buffer overflow and denial of service vulnerabilty in the gdhcp client implementation of connman, a command-line network manag...

Mageia: Security Advisory (MGASA-2023-0167)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-3397-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2023-28488

client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer overflow and denial of service, terminating the connman process...

CVE-2023-28488

client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer overflow and denial of service, terminating the connman process...

CVE-2023-28488

client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer overflow and denial of service, terminating the connman process...

CVE-2023-28488

CVE-2023-28488 affects the gdhcp client in ConnMan (up to v1.41). A network-adjacent attacker crafting DHCP server traffic can trigger a stack-based buffer overflow, causing denial of service and connman termination. Public connected documents confirm affected products and fixes by distro: Debian...

CVE-2022-28488

creationtimestamp| type| source ---|---|--- 2022-05-04 18:35:15+00:00| seen| https://t.me/cibsecurity/41919...

CVE-2022-28488

The function wavformatwrite in libwav.c in libwav through 2017-04-20 has an Use of Uninitialized Variable vulnerability...

CVE-2022-28488

The CVE-2022-28488 entry concerns the libwav project: the function wav_format_write in libwav.c (libwav up to 2017-04-20) contains a use of uninitialized variable vulnerability. Public references (NVD, Red Hat, CVE List, CVELIST, CNNVD) confirm this vulnerability description. The connected docume...

Siemens Simcenter Femap has an out-of-bounds write vulnerability (CNVD-2022-28488)

An out-of-bounds write vulnerability exists in Siemens Simcenter Femap, an advanced simulation application for creating, editing, and inspecting finite element models of complex products or systems, which can be exploited by attackers to execute code in the context of the current process...

CVE-2021-28488

Ericsson Network Manager (ENM) prior to version 21.2 contains an access-control issue where users within the same AMOS authorization group can access managed-network data that was not intended for the entire group. The root cause, as stated in multiple sources, is incorrect access-control behavio...

jQuery UI 1.12.1 - Denial of Service (DoS)

Exploit Title: jQuery UI 1.12.1 - Denial of Service DoS Date: 20 Jan, 2021 Exploit Author: Rafael Cintra Lopes Vendor Homepage: https://jqueryui.com/ Software Link: https://jqueryui.com/download/ Version: DoS - jQuery UI 1.12.1 DoS - jQuery UI 1.12.1 Exploit PoC by Rafael Cintra Lopes function...

jQuery UI 1.12.1 - Denial of Service Exploit

Exploit Title: jQuery UI 1.12.1 - Denial of Service DoS Exploit Author: Rafael Cintra Lopes Vendor Homepage: https://jqueryui.com/ Software Link: https://jqueryui.com/download/ Version: DoS - jQuery UI 1.12.1 DoS - jQuery UI 1.12.1 Exploit PoC by Rafael Cintra Lopes function exploit for var i = 0...

jQuery UI 1.12.1 Denial Of Service

Exploit Title: jQuery UI 1.12.1 - Denial of Service DoS Date: 20 Jan, 2021 Exploit Author: Rafael Cintra Lopes Vendor Homepage: https://jqueryui.com/ Software Link: https://jqueryui.com/download/ Version: DoS - jQuery UI 1.12.1 DoS - jQuery UI 1.12.1 Exploit PoC by Rafael Cintra Lopes function...

Exploit for CVE-2020-28488

CVE-2020-28488 Denial of Service DoS - jQuery UI 1.12.1 - Ex...