7487 matches found
The vulnerability of the SCADA system (formerly InduSoft Web Studio) AVEVA Edge, related to the loading of unreliable DLL libraries, allows a intruder to execute arbitrary code and increase their privileges.
The vulnerability of the SCADA system formerly InduSoft Web Studio AVEVA Edge relates to the loading of unreliable DLL libraries. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...
Fedora: Security Advisory for glibc (FEDORA-2024-07597a0fb3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM QRadar Assistant App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM QRadar Assistant App for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2022-38900 DESCRIPTION: decode-uri-component is...
[SECURITY] Fedora 39 Update: glibc-2.38-16.fc39
The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...
[SECURITY] Fedora 38 Update: glibc-2.37-18.fc38
The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...
BIT-LIFERAY-2022-42126
The Asset Libraries module in Liferay Portal 7.3.5 through 7.4.3.28, and Liferay DXP 7.3 before update 8, and DXP 7.4 before update 29 does not properly check permissions of asset libraries, which allows remote authenticated users to view asset libraries via the UI...
PT-2024-1469 · Aveva · Aveva Edge
Name of the Vulnerable Software and Affected Versions: AVEVA Edge affected versions not specified Description: The issue is related to the loading of unsafe DLL libraries, which could allow a malicious entity with access to the file system to achieve arbitrary code execution and privilege...
The vulnerability of the user interface of Trend Micro Air Support’s customer support system allows a hacker to gain access to read, modify, or delete data, execute arbitrary code, and increase their privileges.
The vulnerability of the user interface of Trend Micro Air Support’s customer support system lies in the loading of unreliable DLL libraries. Exploiting this vulnerability can allow attackers to gain access to read, modify, or delete data, execute arbitrary code, and increase their privileges...
[SECURITY] Fedora 39 Update: dotnet8.0-8.0.101-1.fc39
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
Security Bulletin: IBM Security Directory Integrator affected by multiple vulnerabilities affecting IBM Java SDK
Summary Security Vulnerabilities found in IBM Java SDK shipped with IBM Security Directory Integrator have been addressed with this update. Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE...
[SECURITY] Fedora 38 Update: dotnet8.0-8.0.101-1.fc38
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
Moderate: Red Hat Security Advisory: curl security update
An update for curl is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...
[SECURITY] Fedora 38 Update: dotnet7.0-7.0.115-1.fc38
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
[SECURITY] Fedora 39 Update: dotnet7.0-7.0.115-1.fc39
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
Sandbox Escape
Artemis Java Test Sandbox is vulnerable to Sandbox Escape. The vulnerability is caused due to missing checkLinkString override in the SecurityManager. This allows an attacker to load untrusted libraries and execute arbitrary Java code within the context of the application...
am.ik.access-logger:access-logger (>=0.1.6 <=0.2.0), cn.herodotus.engine:access-core (>=3.1.7.0 <=3.1.7.5) +663 more potentially affected by CVE-2024-22233 via org.springframework:spring-core (=6.0.15)
org.springframework:spring-core MAVEN version =6.0.15 is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework:spring-core and may be impacted: - am.ik.access-logger:access-logger =0.1.6, =3.1.7.0, =3.1.7.0, =3.1.7.0, =3.1.7.3, =3.1.7.0,...
[SECURITY] Fedora 38 Update: dotnet6.0-6.0.126-1.fc38
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
[SECURITY] Fedora 39 Update: dotnet6.0-6.0.126-1.fc39
.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...
Duplicate Advisory: Sandbox escape in Artemis Java Test Sandbox
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-98hq-4wmw-98w9. This link is maintained to preserve external references. Original Description Artemis Java Test Sandbox versions before 1.11.2 are vulnerable to a sandbox escape when an attacker loads untrusted...
[SECURITY] Fedora 38 Update: golang-github-facebook-time-0^20240110git1649917-1.fc38
Meta's Time libraries...