CVE-2018-4073

Concisely: CVE-2018-4073 affects Sierra Wireless AirLink ES450 (and related GX450) running FW 4.9.3, involving Embedded_Ace_Set_Task.cgi/Embedded_Ace_TLSet_Task.cgi in ACEManager. The flaw enables an authenticated user (or an attacker who can access via SSH) to perform arbitrary setting writes, e...

CVE-2018-4072

The CVE-2018-4072 vulnerability affects Sierra Wireless AirLink ES450 running FW 4.9.3, in the ACEManager EmbeddedAceSet_Task.cgi component. Affected by a permission-assignment flaw that allows an authenticated user to modify configuration values via the /cgi-bin/Embedded_Ace_Set_Task.cgi endpoin...

CVE-2018-4072

An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSetTask.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The EmbeddedAceSetTask.cgi executable is used to change MSCII configuration values within the configuration manager of the AirLink ES450. Thi...

Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Set_Task.cgi Permission Assignment

Talos Vulnerability Report TALOS-2018-0756 Sierra Wireless AirLink ES450 ACEManager EmbeddedAceSetTask.cgi Permission Assignment Vulnerability April 25, 2019 CVE Number CVE-2018-4072, CVE-2018-4073 Summary An exploitable Permission Assignment vulnerability exists in the ACEManager...

Incorrect Permission Assignment for Critical Resource

In Kubernetes, schema info is cached by kubectl in the location specified by --cache-dir defaulting to $HOME/.kube/http-cache, written with world-writeable permissions rw-rw-rw-. If --cache-dir is specified and pointed at a different location accessible to other users/groups, the written files ma...

The vulnerability of the Certificate Management Server component in the Network Security Services library allows a perpetrator to trigger a service failure.

The vulnerability of the Certificate Management Server CMS component in the NSS library set is related to pointer assignment errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2019-3849

A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site...

CVE-2019-3850

A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Links within assignment submission comments would open directly in the same window. Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more...

Design/Logic Flaw

A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Links within assignment submission comments would open directly in the same window. Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more...

CVE-2019-3850

A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Links within assignment submission comments would open directly in the same window. Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more...

UBUNTU-CVE-2019-3850

A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Links within assignment submission comments would open directly in the same window. Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more...

CVE-2019-3850

A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Links within assignment submission comments would open directly in the same window. Although links themselves may be valid, opening within the same window and without the no-referrer header policy made them more...

CVE-2019-3850

Moodle prior to 3.6.3, 3.5.5, 3.4.8 and 3.1.17 is affected by CVE-2019-3850. The issue arises because links in assignment submission comments could be opened in the same browser window, and without a no-referrer policy this can be exploited. Affected versions, impact details, and CVSS metrics are...

(0Day) (Pwn2Own) Google Android Contacts Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Google Android. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

The vulnerability of the fly-admin-autostart utility for configuring automatic startup of programs in the Astra Linux operating system, related to pointer assignment errors, allows a hacker to trigger a service failure.

The vulnerability of the fly-admin-autostart utility for configuring automatic startup of programs in the Astra Linux operating system is related to the lack of checking for the value of a pointer being set to NULL. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2018-12014

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, Null pointer dereference vulnerability may occur due to missing NULL assignment in NAT module of freed pointer...

Design/Logic Flaw

TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...

CVE-2019-1000001

TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...

CVE-2019-1000001

TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...

Zero Trust and the Case for Application Microsegmentation

Data breaches have become incessant. Recently, a very popular airline sevices company revealed a suspected breach involving customer credit card information. Even more recently, a hospital in Indiana reported that a virus had infected some of its systems that caused the hospital to be placed on...