EUVD-2020-28414

Malware in sbrugna...

Citrix Workspace app for Windows Security Bulletin CVE-2025-4879

Severity - High Description of Problem A vulnerability has been discovered that impacts the Citrix Workspace app for Windows. Affected Versions The vulnerability affects the following supported versions of the Citrix Workspace app for Windows Current Release CR Citrix Workspace app for Windows...

Virtuozzo Hybrid Server 7.5 Update 7 Hotfix 1 (7.5.7-151)

The Hotfix 1 for Virtuozzo Hybrid Server 7.5 Update 7 provides new features, as well as stability and usability bug fixes. Vulnerability id: PSBM-159866 Fixed an issue with the 'c2v-convert' tool failing while creating a filesystem for a virtual machine's disk. Vulnerability id: PSBM-159824 The...

Security Bulletin: Common vulnerability in Cloudera Data Platform Private Cloud Base 7.1.9 fixed in Hot Fix 1

Summary Fix to common vulnerability, CVE-2021-43045, discovered in Cloudera Data Platform 7.1.9 is available to download from Cloudera. Vulnerability Details CVEID:CVE-2021-43045 DESCRIPTION: Apache Avro is vulnerable to a denial of service, caused by a flaw in the .NET SDK. By sending a...

Virtuozzo Hybrid Infrastructure 6.1 Hotfix 1 (6.1.0-247)

In this release, Virtuozzo Hybrid Infrastructure enables selective updates of specific Kubernetes node groups, as well as provides stability and performance improvements. Vulnerability id: VSTOR-83526 Cannot filter backup plans by using the "Disabled" status. Vulnerability id: VSTOR-83662 Added...

Virtuozzo Hybrid Server 7.5 Update 6 Hotfix 1 (7.5.6-112)

The Hotfix 1 for Virtuozzo Hybrid Server 7.5 Update 6 introduces a new feature and provides stability and usability bug fixes. Vulnerability id: PSBM-154494 Virtuozzo Automator Agent could fail to return disk statistics for some stopped containers. Vulnerability id: PSBM-154488 Downloading the...

Virtuozzo Hybrid Infrastructure 6.0 Update 1 Hotfix 1 (6.0.1-85)

This update provides stability and performance improvements. Vulnerability id: VSTOR-72592 Increased the speed of VM filtering in clusters with a huge number of existing projects. Vulnerability id: VSTOR-79462 Parts of a multipart object are not deleted. Vulnerability id: VSTOR-79650, VSTOR-80493...

VulnCheck KEV: CVE-2021-35250

A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access to files relating to the Serv-U installation and server files. This issue has been resolved in Serv-U 15.3 Hotfix 1...

Virtuozzo Hybrid Infrastructure 5.1 Update 1 Hotfix 1 (5.1.1-71)

This update provides an important security fix. Vulnerability id: VSTOR-75357 Fixed a critical security vulnerability...

Virtuozzo Hybrid Infrastructure 5.2 Update 1 Hotfix 1 (5.2.1-69)

This update provides important security and stability fixes. Vulnerability id: VSTOR-75357 Fixed a critical security vulnerability. Vulnerability id: VSTOR-60071 Fixed a problem that occurs while opening backup archives with erasure coding. Vulnerability id: VSTOR-58571 The core storage crashed d...

CVE-2023-40060

A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4. SolarWinds found that the issue was not completely...

Authentication flaw

A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4. SolarWinds found that the issue was not completely...

CVE-2023-40060 2FA/MFA Bypass Vulnerability in Serv-U 15.4 and 15.4 Hotfix 1

A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4. SolarWinds found that the issue was not completely...

CVE-2023-40060

Summary: CVE-2023-40060 affects SolarWinds Serv-U 15.4 and 15.4 Hotfix 1, allowing an administrator-level attacker to bypass MFA/MFA. The issue was not fully resolved by 15.4 Hotfix 1. Affected software & cause: Serv-U FTP Server (15.4 and 15.4 Hotfix 1). The root cause is an authentication bypas...

Virtuozzo Hybrid Infrastructure 5.4 Update 3 Hotfix 1 (5.4.3-102)

This update provides important security fixes. Vulnerability id: VSTOR-71357 Fixes for three high-severity and six medium-severity security vulnerabilities...

Virtuozzo Hybrid Infrastructure 5.4 Update 2 Hotfix 1 (5.4.2-66)

This update provides important improvements for the core storage and compute services. Vulnerability id: VSTOR-69329 The compute networking service may get stuck after an update to version 5.4 Update 2. Vulnerability id: VSTOR-66925, VSTOR-68759, VSTOR-69819 Important stability improvements...

Virtuozzo PowerPanel Update 2 Hotfix 1 (7.0.4-77)

The update for Virtuozzo PowerPanel introduces stability fixes. Vulnerability id: PP-746 Controller installation may fail with a credentials-related error...

Virtuozzo Hybrid Infrastructure 5.4 Hotfix 1 (5.4.0-138)

This update provides stability fixes for the compute and core storage services. Vulnerability id: VSTOR-63084 Unable to manage a virtual machine after a failed migration. Vulnerability id: VSTOR-63050, VSTOR-59007 In some cases, resetting a state may not work. Vulnerability id: VSTOR-63041 Fixes...

Virtuozzo Hybrid Server 7.5 Update 4 Hotfix 1 (7.5.4-490)

The Hotfix 1 for Virtuozzo Hybrid Server 7.5 Update 4 provides stability and usability bug fixes. Vulnerability id: PSBM-144625 Live migration of a container could fail in the CRIU restore phase. Vulnerability id: PSBM-145915 VM migration could fail with the inability to merge temporary snapshots...

PT-2022-6502 · Schneider Electric · Ecostruxure Operator Terminal Expert +1

Name of the Vulnerable Software and Affected Versions: EcoStruxure Operator Terminal Expert versions prior to V3.3 Hotfix 1 Pro-face BLUE versions prior to V3.3 Hotfix 1 Description: The issue is related to incorrect project conversion, which can be exploited to execute malicious code. An adversa...