PT-2024-25911 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX versions prior to 2.1.4 Description: The issue allows a regular user to view everyone's user flink information, including executeSQL and config, after successfully logging in. This is achieved by manually making a request using the...

CVE-2023-33068

Memory corruption in Audio while processing IIR config data from AFE calibration block...

CVE-2023-33068

CVE-2023-33068 concerns memory corruption in the Audio component when processing IIR configuration data from an AFE calibration block on Qualcomm chipsets. The public description across sources cites a memory corruption vulnerability in the Audio path due to IIR config data handling, with CVSS me...

whoogle-search path traversal vulnerability

whoogle-search is a software application. Self-hosted, ad-free, privacy-respecting metasearch engine. A path traversal vulnerability exists in whoogle-search versions prior to 0.8.4, which stems from the config function in app/routes.py that does not validate the user-controlled name variable and...

CVE-2023-38640

Affected product: Siemens SICAM PAS/PQS (versions 8.00 up to but not including 8.22). The vulnerability is an incorrect privilege/permission assignment: the application installs with specific files and folders with insecure permissions, enabling an authenticated local attacker to read and modify ...

GHSA-6R78-M64M-QWCF Moq v4.20.0-rc to 4.20.1 share hashed user data

Moq v4.20.0-rc to 4.20.1 include support for SponsorLink, which runs an obfuscated DLL at build time that scans local git config data and shares the user's hashed email address with SponsorLink's remote servers. There is no option to disable this. Moq v4.20.2 has removed this functionality...

SUSE CVE-2018-10900

Network Manager VPNC plugin aka networkmanager-vpnc before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an attacker to execute arbitrary commands as root...

CVE-2022-48166

An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

CVE-2022-3711

A post-auth read-only SQL injection vulnerability allows users to read non-sensitive configuration database contents in the User Portal of Sophos Firewall releases older than version 19.5 GA...

PT-2022-6069 · Sophos · Sophos Firewall

Name of the Vulnerable Software and Affected Versions: Sophos Firewall versions prior to 19.5 GA Description: A post-auth read-only SQL injection issue allows API clients to read non-sensitive configuration database contents in the API controller. This can enable a remote attacker to gain...

CVE-2022-39850

Improper access control in mumcontainerpolicy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data...

CVE-2022-34049

An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows unauthenticated attackers to download log files and configuration data...

PT-2022-19828 · Publiccms · Publiccms

Name of the Vulnerable Software and Affected Versions: PublicCMS versions 4.0.202204.a and below Description: The issue is related to an information leak in the component /views/directive/sys/SysConfigDataDirective.java. Recommendations: For PublicCMS versions 4.0.202204.a and below, consider...

PT-2022-15484 · 3S Smart Software Solutions · Codesys Control Runtime System

Name of the Vulnerable Software and Affected Versions: CODESYS Control runtime system affected versions not specified Description: A remote attacker could utilize the control program of the CODESYS Control runtime system to read and modify the configuration files of the affected products. The...

CVE-2022-25568

MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. To exploit this vulnerability, a regular user password must be unconfigured...

PT-2022-17333 · Cuppacms · Cuppacms

Name of the Vulnerable Software and Affected Versions: CuppaCMS version 1.0 Description: The issue is related to a remote code execution RCE vulnerability. It is exploited via the saveConfigData function in the /classes/ajax/Functions.php file. Recommendations: For CuppaCMS version 1.0, as a...

Vulnerabilities fixed in McAfee Endpoint Security

McAfee has fixed vulnerabilities in Endpoint Security for Windows. A local malicious agent could exploit the vulnerabilities to obtain elevated privileges and to execute arbitrary code with user privileges through a cross-site scripting XSS attack. In addition, the vulnerabilities can be exploite...

Cross-Site Scripting (XSS)

BizCharts is vulnerable to cross site scripting. The package fails to sanitize config data in the update function, allowing attackers to inject and execute arbitrary code in a victim's browser...

PT-2020-15412 · Jenkins · Jenkins Project Inheritance Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Project Inheritance Plugin versions 21.04.03 and earlier Description: The issue concerns the transmission of job config.xml data to users without proper Job/Configure permissions. Specifically, it does not redact encrypted secrets in...

kernel: oob memory read in hso_probe in drivers/net/usb/hso.c

A flaw was found in the Linux kernel in the function hsoprobe which reads ifnum value from the USB device as an u8 and uses it without a length check to index an array, resulting in an OOB memory read in hsoprobe or hsogetconfigdata. An attacker with a forged USB device and physical access to a...