CVE-2020-3471

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

CVE-2020-3471

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

Design/Logic Flaw

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

CVE-2020-3471 Cisco Webex Meetings and Cisco Webex Meetings Server Unauthorized Audio Information Exposure Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

RUSTSEC-2020-0116 PinSlab<T> and Unordered<T, S> need bounds on their Send/Sync traits

Affected versions of this crate unconditionally implemented Send & Sync for types PinSlab & Unordered. This allows sending non-Send types to other threads and concurrently accessing non-Sync types from multiple threads. This can result in a data race & memory corruption when types that provide...

EulerOS Virtualization 3.0.6.6 : ntp (EulerOS-SA-2020-2450)

According to the version of the ntp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server...

kernel: padata: fix UAF in padata_reorder

A use-after-free vulnerability was found in the Linux kernel's padata subsystem, in the padatareorder function. Caused by improper synchronization controls, this vulnerability can occur when a reference-counted data structure pd is decremented in one thread, freeing it, while another thread still...

Time Display on NetScaler Does Not Sync Using NTP

Time display on NetScaler does not sync using NTP...

Command Execution Vulnerability in Toastmaster pc Client Software

Toastmaster is a Windows computer desktop sticky notes software, with multi-end data cloud synchronization Windows/iPhone/Android/Web. A command execution vulnerability exists in the Toastmaster pc client software, which can be exploited by an attacker to gain control of the server...

The vulnerability of the WildFly application server in Java, caused by synchronization errors when using a shared resource, allows attackers to terminate arbitrary processes in the system.

The vulnerability of the WildFly application server in Java is caused by synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to terminate arbitrary processes in the system by modifying the PID file located at /var/run/jboss-eap/...

The vulnerability of the RPD daemon in the JunOS operating system, allowing a intruder to trigger a maintenance failure

The vulnerability of the RPD daemon in the JunOS operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the kernel function kgsl_mem_entryDestroy in Qualcomm software allows a attacker to cause the system to abruptly terminate the execution of kernel code.

The vulnerability of the kernel function kgslmementrydestroy drivers/gpu/msm/kgsl.c in Qualcomm software is caused by synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to cause the kernel code to terminate emergently...

The vulnerability of the D-Bus inter-process communication system, caused by synchronization errors when using shared resources, allows a malicious actor to trigger a service failure.

The vulnerability of the D-Bus inter-process communication system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause a service failure due to the absence of a function for checking the “ActivationFailure” signal source...

DEBIAN-CVE-2020-25743

hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an idecanceldmasync call...

The vulnerability of the JunOS operating system, related to synchronization errors when using shared resources, allows a hacker to alter the device’s configuration.

The vulnerability of the JunOS operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to modify the device’s configuration...

The vulnerability of Intel microprogramming software, related to synchronization errors in cache memory, allows attackers to gain access to protected information.

The vulnerability of Intel microprogramming software is related to synchronization errors in cache memory. Exploiting this vulnerability can allow an attacker to gain access to protected information...

Citrix WEM Agents not Synchronizing Error “No Connection Could be Made Because The Target Machine Actively Refused it”

Citrix Virtual Delivery Agents running Workspace Environment Management WEM Agents are not synchronizing with two or more WEM Broker servers load balanced via Citrix Gateway. Policies delivered through WEM are not applying to agents Event Viewer shows the following error:“No connection could be...

Nextcloud Desktop Sync client: Multiple vulnerabilities

Background Nextcloud Desktop Sync client can synchronize one or more directories to Nextcloud server. Description Multiple vulnerabilities have been discovered in Nextcloud Desktop Sync client. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE...

EulerOS Virtualization for ARM 64 3.0.6.0 : ntp (EulerOS-SA-2020-1893)

According to the versions of the ntp packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service daemon exit or...

[SECURITY] Fedora 32 Update: chrony-3.5.1-1.fc32

chrony is a versatile implementation of the Network Time Protocol NTP. It can synchronise the system clock with NTP servers, reference clocks e.g. GPS receiver, and manual input using wristwatch and keyboard. It can also operate as an NTPv4 RFC 5905 server and peer to provide a time service to...