CVE-2018-14371

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications...

CVE-2018-14371

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications...

CVE-2018-14371

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications...

Apache Solr XML External Entity Multiple Information Disclosure Vulnerability

Apache Solr is a U.S. Apache Apache Software Foundation based on Lucene a full-text search engine architecture of the search server , which supports level search , vertical search , highlighting search results , a variety of output formats and so on. An XML External Entity Multiple Information...

CVE-2018-12528

An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router firmware settings or even the uploading of malicious files. In order to exploit the vulnerability...

Enhanced Mitigation Experience Toolkit (EMET) XML Injection Vulnerability

Exploit for windows platform in category remote exploits + Credits: John Page aka hyp3rlinx Vendor: ================ www.microsoft.com Product: =========== Enhanced Mitigation Experience Toolkit EMET Enhanced Mitigation Experience Toolkit is a freeware security toolkit for Microsoft Windows,...

[ASA-201806-11] pass: arbitrary code execution

Arch Linux Security Advisory ASA-201806-11 ========================================== Severity: High Date : 2018-06-19 CVE-ID : CVE-2018-12356 Package : pass Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-720 Summary ======= The package pass before version...

Security Bulletin: OpenSSL command line utility in IBM Workload Scheduler can run with elevated priviliges (CVE-2017-1716)

Summary OpenSSL command line utility in IBM Workload Scheduler has SUID permissions and can run with elevated priviliges Vulnerability Details OpenSSL command line utility in IBM Workload Scheduler, installed in TWS installation directory/TWS/bin/openssl, is installed with SUID permssion, as show...

Security Bulletin: TADDM – Security improvement: More restricted permission on TADDM files on UNIX-like servers.

Summary TADDM security improvement deployed started from TADDM 7.2.1.5 and in TADDM 7.2.2 that restrict access to TADDM files on UNIX-like servers. Vulnerability Details CVE-2013-4040 Description Default TADDM file permission on UNIX-like servers, by default are 755 rwx r-x r-x, that allow all...

Security Bulletin:  IBM Security Guardium is affected by Open Source Oracle MySQL Vulnerabilities (CVE-2016-6662)

Summary MySQL Server could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper restrictions to logging functions. By executing a specially crafted series of SQL statements, an attacker could exploit this vulnerability to create or modify my.conf...

Security Bulletin: IBM Security Access Manager uses configuration files with obfuscated passwords that can be accessed by authenticated users (CVE-2015-5013)

Summary The IBM Security Access Manager appliance stores obfuscated passwords in plain-text configuration files that can be accessed by authenticated users. Vulnerability Details CVEID: CVE-2015-5013 DESCRIPTION: The appliance includes configuration files that contain obfuscated...

Security Bulletin: IBM QRadar SIEM is vulnerable to clear text passwords. (CVE-2016-2871)

Summary Some passwords in IBM QRadar SIEM were found in configuration files in clear text. Vulnerability Details CVE-ID: CVE-2016-2871 Description: IBM QRadar stores passwords in clear text in configuration files, that could allow a local user to obtain critical sensitive information and gain...

CVE-2018-12356

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.2. The signature verification routine parses the output of GnuPG with an incomplete regular expression, which allows remote attackers to spoof file signatures on configuration files and extension script...

CVE-2018-12356

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.2. The signature verification routine parses the output of GnuPG with an incomplete regular expression, which allows remote attackers to spoof file signatures on configuration files and extension script...

Code injection

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.2. The signature verification routine parses the output of GnuPG with an incomplete regular expression, which allows remote attackers to spoof file signatures on configuration files and extension script...

CVE-2018-12356

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.2. The signature verification routine parses the output of GnuPG with an incomplete regular expression, which allows remote attackers to spoof file signatures on configuration files and extension script...

Smule: Disclosure of information about the system, configuration files.

Disclosure of django configuration via debug mode...

New Relic: Insecure Infrastructure Integrations YML Loading leads to Windows Privilege Escalation

After installing the Windows Infrastructure client as discussed in https://docs.newrelic.com/docs/infrastructure/new-relic-infrastructure/installation/install-infrastructure-windows-server I noticed that integration yml config files are not only loaded from the folder within Program Files, but al...

Design/Logic Flaw

A vulnerability in the certificate management subsystem of Cisco AnyConnect Network Access Manager and of Cisco AnyConnect Secure Mobility Client for iOS, Mac OS X, Android, Windows, and Linux could allow an unauthenticated, remote attacker to bypass the TLS certificate check when downloading...

CVE-2018-0334

A vulnerability in the certificate management subsystem of Cisco AnyConnect Network Access Manager and of Cisco AnyConnect Secure Mobility Client for iOS, Mac OS X, Android, Windows, and Linux could allow an unauthenticated, remote attacker to bypass the TLS certificate check when downloading...