13 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-44699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the verification key for an...
DEBIAN-CVE-2026-44699
LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the verification key for an HS256/HS384/HS512 token. In the OpenSSL backend, this causes HMAC verification to run with a zero-length key, so an attacker can forge a valid...
CVE-2026-44699
LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the verification key for an HS256/HS384/HS512 token. In the OpenSSL backend, this causes HMAC verification to run with a zero-length key, so an attacker can forge a valid...
CVE-2026-44699 LibJWT: Algorithm confusion allows JWT forgery with RSA JWK as empty-key HMAC
LibJWT is a C JSON Web Token Library. From 3.0.0 to 3.3.2, libjwt accepts an RSA JWK that does not contain an alg parameter as the verification key for an HS256/HS384/HS512 token. In the OpenSSL backend, this causes HMAC verification to run with a zero-length key, so an attacker can forge a valid...
Adobe Audition < 14.4.3 / 22.0.0 < 22.1.1 Multiple Privilege escalation (APSB21-121) (macOS)
The version of Adobe Audition installed on the remote macOS host is prior to 14.4.3, 22.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-121 advisory. - Adobe Audition versions 14.4 and earlier, and 22.0 and earlierare affected by an out-of-bounds read...
CVE-2022-44699
creationtimestamp| type| source ---|---|--- 2022-12-13 22:28:00+00:00| seen| https://t.me/cibsecurity/54456...
Vulnerabilities fixed in Microsoft Azure
Vulnerabilities have been fixed in Microsoft Azure. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Circumvention of security measure Increased user privileges The tables below provide an...
CVE-2022-44699
CVE-2022-44699 affects the Azure Network Watcher Agent (VM extension). The connected docs describe a Security Feature Bypass caused by authorization errors in the Azure Network Watcher Agent service, enabling bypass of security controls and potentially missing logs from packet captures. Adjacent ...
CVE-2021-44699
creationtimestamp| type| source ---|---|--- 2021-12-21 00:15:40+00:00| seen| https://t.me/cibsecurity/34325...
Adobe Audition < 14.4.3 / 22.0.0 < 22.1.1 Multiple Privilege escalation (APSB21-121)
The version of Adobe Audition installed on the remote Windows host is prior to 14.4.3, 22.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-121 advisory. - Adobe Audition versions 14.4 and earlier, and 22.0 and earlierare affected by an out-of-bounds read...
CVE-2021-44699
Adobe Audition versions 14.4 and earlier, and 22.0 and earlierare affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti...
CVE-2021-44699 Adobe Audition MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Adobe Audition versions 14.4 and earlier, and 22.0 and earlierare affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti...
CVE-2021-44699
Adobe Audition versions 14.4 and earlier, and 22.0 and earlier, are affected by an out-of-bounds read in MP4 parsing that can disclose memory and bypass ASLR. Exploitation requires user interaction (opening a malicious MP4). References in connected docs point to a patch in APSB21-121; updated bui...