CVE-2023-5554

Vulnerability context (CVE-2023-5554): LINE Client for iOS prior to 13.16.0 contains a lack of TLS certificate verification in the log transmission of the Finance module. This could allow a man‑in‑the‑middle attack to eavesdrop or tamper logs. The issue affects the financial module’s log transmis...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...

PT-2023-32172 · Line · Line Client For Ios

Name of the Vulnerable Software and Affected Versions: LINE Client for iOS versions prior to 13.16.0 Description: The issue is related to a lack of TLS certificate verification in log transmission of a financial module. This could potentially lead to security risks, but specific details about the...

CVE-2023-40368 IBM Storage Protect information disclosure

IBM Storage Protect 8.1.0.0 through 8.1.19.0 could allow a privileged user to obtain sensitive information from the administrative command line client. IBM X-Force ID: 263456...

FreeBSD : py-httpie -- exposure of sensitive information vulnerabilities (1e37fa3e-5988-4991-808f-eae98047e2af)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 1e37fa3e-5988-4991-808f-eae98047e2af advisory. - Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository httpie/httpi...

SUSE CVE-2018-18629

An issue was discovered in the Keybase command-line client before 2.8.0-20181023124437 for Linux. An untrusted search path vulnerability in the keybase-redirector application allows a local, unprivileged user on Linux to gain root privileges via a Trojan horse binary...

SUSE CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

CVE-2022-41568

LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in group chat...

CVE-2022-41568

LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in group chat...

CVE-2022-41568

LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in group chat...

Line Client For Ios 资源管理错误漏洞

Line Client For iOS is a messaging application from Line Corporation, Japan. A denial of service vulnerability exists in Line Client For iOS prior to version 12.17.0, which originates from line client for iOS crashing in a group chat when an invalid e2ee key is shared, and can be exploited by an...

PT-2022-25943 · Line · Line Client For Ios

Name of the Vulnerable Software and Affected Versions: LINE client for iOS versions prior to 12.17.0 Description: The issue is related to the LINE client for iOS, where sharing an invalid shared key of end-to-end encryption e2ee in a group chat might cause the application to crash. Recommendation...

[SECURITY] Fedora 36 Update: golang-github-cloudflare-0.21.0-4.fc36

A Go library for interacting with Cloudflare's API v4. This library allows you to: - Manage and automate changes to your DNS records within Cloudflare - Manage and automate changes to your zones domains on Cloudflare, includi ng adding new zones to your account - List and modify the status of WAF...

[SECURITY] Fedora 35 Update: reg-0.16.1-8.fc35

Docker registry v2 command line client and repo listing generator with securi ty checks...

[SECURITY] Fedora 36 Update: golang-github-cloudflare-0.21.0-3.fc36

A Go library for interacting with Cloudflare's API v4. This library allows you to: - Manage and automate changes to your DNS records within Cloudflare - Manage and automate changes to your zones domains on Cloudflare, includi ng adding new zones to your account - List and modify the status of WAF...

XML Entity Expansion in trytond and proteus

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...

GHSA-CJ78-RGW3-4H5P Improper Restriction of XML External Entity Reference in trytond and proteus

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

Improper Restriction of XML External Entity Reference in trytond and proteus

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

CVE-2022-26662

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...

Design/Logic Flaw

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...