EUVD-2014-1135

Malware in sbrugna...

EUVD-2017-9210

Malware in sbrugna...

Oracle Siebel Server < 17.6 (April 2018 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2018 CPU advisory. - Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: EAI Apache Tomcat. The supported version that is affected i...

SUSE CVE-2018-5174

In the Windows 10 April 2018 Update, Windows Defender SmartScreen honors the "SEEMASKFLAGNOUI" flag associated with downloaded files and will not show any UI. Files that are unknown and potentially dangerous will be allowed to run because SmartScreen will not prompt the user for a decision, and i...

SUSE CVE-2018-10657

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

GHSA-VMCC-4P4X-X7WG Matrix Synapse DoS

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 263 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

Matrix Synapse DoS

Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 263 - 1 render rooms unusable, related to federation/federationbase.py and handlers/message.py, as exploited in the wild in April 2018...

Oracle WebCenter Content Unspecified Vulnerability (April 2018 CPU)

The version of Oracle WebCenter Content running on the remote host is affected by a vulnerability in the Oracle WebCenter Content component of Oracle Fusion Middleware subcomponent: Content Server. Supported versions that are affected are 11.1.1.9.0, 12.2.1.2.0 and 12.2.1.3.0. An easy to exploit...

CVE-2018-21075

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. The Call+ application can load classes from an unintended path, leading to Code Execution. The Samsung ID is SVE-2017-10886 April 2018...

CVE-2018-21077

An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.x software. There is a Clipboard content disclosure in the locked state because the keyboard may be used during an emergency call. The Samsung ID is SVE-2017-11107 April 2018...

CVE-2018-21077

An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.x software. There is a Clipboard content disclosure in the locked state because the keyboard may be used during an emergency call. The Samsung ID is SVE-2017-11107 April 2018...

Oracle GoldenGate Information Disclosure (April 2018 CPU)

The version of Oracle GoldenGate installed on the remote host is affected by an information disclosure vulnerability, as noted in the April 2018 CPU advisory. The vulnerability exists in Oracle GoldenGate due to an unknown reason. An unauthenticated, remote attacker can exploit this, via HTTP, to...

Security Bulletin: Multiple Security Vulnerabilities exist in IBM Cognos TM1

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 used by IBM Cognos TM1. These issues were disclosed as part of the IBM Java SDK updates in January 2018 and April 2018. Multiple Open Source OpenSSL vulnerabilities have also been addressed. Vulnerability Detai...

October 15, 2019—KB4519978 (OS Build 17134.1099)

October 15, 2019—KB4519978 OS Build 17134.1099 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a...

October 8, 2019—KB4520008 (OS Build 17134.1069)

October 8, 2019—KB4520008 OS Build 17134.1069 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a...

August 19, 2019—KB4512509 (OS Build 17134.984)

August 19, 2019—KB4512509 OS Build 17134.984 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a...

September 10, 2019—KB4516058 (OS Build 17134.1006)

September 10, 2019—KB4516058 OS Build 17134.1006 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a...

Webmin 1.920 password_change.cgi Backdoor Exploit

This Metasploit module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project's site. Unknown attackers inserted Perl qx statements into the build server's source code on two separate...

Webmin password_change.cgi Backdoor

This module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project's site. Unknown attackers inserted Perl qx statements into the build server's source code on two separate occasions: onc...

August 13, 2019—KB4512501 (OS Build 17134.950)

August 13, 2019—KB4512501 OS Build 17134.950 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a...