EUVD-2023-2616

Malicious code in bioql PyPI...

CVE-2023-5214

In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...

WordPress Elementor Website Builder plugin <= 3.27.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zer0gh0st in WordPress Plugin Elementor Website Builder versions = 3.27.4...

Improper Privilege Management

Overview bolt is a library enabling the execution of commands remotely over SSH and WinRM Affected versions of this package are vulnerable to Improper Privilege Management. An attacker can escalate their privileges by exploiting this vulnerability. Remediation Upgrade bolt to version 3.27.4 or...

Puppet Bolt privilege escalation vulnerability

In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified...

PT-2023-31931 · Puppet · Puppet Bolt

Name of the Vulnerable Software and Affected Versions: Puppet Bolt versions prior to 3.27.4 Description: A path to escalate privileges was identified in Puppet Bolt. Recommendations: For versions prior to 3.27.4, update to version 3.27.4 or later to resolve the issue...

Puppet Bolt Security Vulnerability

Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the United States, which can be used to manage configuration files, users, cron tasks, packages, system services, and so on. A security vulnerability exists in Puppet Bolt versions prior ...

Out-of-bounds

The Memcache::getextendedstats function can be used to trigger an out-of-bounds read. Exploiting this issue requires control over memcached server hostnames and/or ports. This affects all supported versions of HHVM 3.30 and 3.27.4 and below...