The vulnerability of the compatibility subsystem’s kernel allows for the execution of Linux applications. The Windows Subsystem for Linux (WSL2) and the Azure IoT Edge for Linux on Windows (EFLOW) environment enable attackers to enhance their privileges.

The vulnerability of the compatibility subsystem’s kernel for running Linux applications is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability in the overwrite.config.php implementation: The $domain parameter of the web application for data synchronization with ownCloud allows attackers to perform spoofing attacks.

The vulnerability of the overwrite.config.php script, where $domain is used for the web application’s data synchronization with ownCloud, is related to configuration errors when processing the OWNCLOUDDOMAIN variable. Exploiting this vulnerability allows a malicious actor to perform spear-phishin...

AlmaLinux 9 : 389-ds-base (ALSA-2022:8162)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:8162 advisory. - A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denia...

Successful Hack of Time-Triggered Ethernet

Time-triggered Ethernet TTE is used in spacecraft, basically to use the same hardware to process traffic with different timing and criticality. Researchers have defeated it: On Tuesday, researchers published findings that, for the first time, break TTEs isolation guarantees. The result is PCspooF...

The vulnerability of Group Policy Services in Windows operating systems allows a perpetrator to increase their privileges.

The vulnerability of Group Policy Services in Windows operating systems is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Advanced Local Procedure Call (ALPC) handler in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Advanced Local Procedure Call ALPC in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability in the implementation of the Point to Point Tunneling Protocol (PPPT) for Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Point to Point Tunneling Protocol PPTP implementation in Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Rocky Linux 8 : 389-ds:1.4 (RLSA-2022:7133)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7133 advisory. - A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a special...

Moderate: Red Hat Security Advisory: rsync security and bug fix update

An update for rsync is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

389-ds-base: SIGSEGV in sync_repl

A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service...

RLSA-2022:8291 Moderate: rsync security and bug fix update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

Nextcloud has an unspecified vulnerability (CNVD-2022-77502)

A security vulnerability exists in Nextcloud Desktop Client, an open source self-hosted file synchronization and sharing communication application platform from Nextcloud Germany, which stems from the fact that its desktop client could be tricked into opening/executing local files when clicking o...

The vulnerability in the functionality of Windows for connected users and telemetry allows a perpetrator to enhance their privileges.

The vulnerability of the functional capabilities for connected users and telemetry in the Windows operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Point-to-Point Tunneling Protocol network protocol implementation in the Windows operating system allows a hacker to induce a service failure.

The vulnerability of the Point-to-Point Tunneling Protocol network protocol implementation in the Windows operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to remotely cause service failures...

The vulnerability in the implementation of the Point to Point Tunneling Protocol (PPPT) for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Point to Point Tunneling Protocol PPTP implementation in Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted PPTP packe...

The vulnerability of the Advanced Local Procedure Call (ALPC) handler in the Windows operating system allows attackers to escalate their privileges.

The vulnerability of the Advanced Local Procedure Call ALPC in the Windows operating system arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

Moderate: rsync security and bug fix update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

ALSA-2022:8291 Moderate: rsync security and bug fix update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

The vulnerability of the Windows Photo Import API of the Microsoft Windows operating system allows a perpetrator to gain unauthorized access to protected information and enhance their privileges.

The vulnerability of the Windows Photo Import API of the Microsoft Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and increase their privileges...

The vulnerability of the Windows operating system’s Storage Services allows a perpetrator to gain unauthorized access and increase their privileges.

The vulnerability of the Windows operating system’s Storage Services is caused by synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access and increase their privileges...