Unrestricted file upload

An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file...

[SECURITY] Fedora 31 Update: nspr-4.23.0-1.fc31

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

The vulnerability of the Android operating system’s libgui library, which allows a hacker to increase their privileges

The vulnerability of the Android operating system’s libgui library arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

CVE-2018-2579

It was discovered that multiple encryption key classes in the Libraries component of OpenJDK did not properly synchronize access to their internal data. This could possibly cause a multi-threaded Java application to apply weak encryption to data because of the use of a key that was zeroed out...

CVE-2019-10923

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization IRT of the affected installation...

CVE-2019-10923

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization IRT of the affected installation...

Design/Logic Flaw

A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7, SIMATIC S7-400 CPU 414F-3 PN/DP V7, SIMATIC S7-400 CPU 416-3 PN/DP V7, SIMATIC S7-400 CPU 416F-3 PN/DP V7, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFIN...

CVE-2019-10923

CVE-2019-10923 affects Siemens Industrial Real-Time devices (e.g., CP1604/CP1616, PROFINET IO DK/EK-ERTEC kits, SCALANCE X‑200IRT, ET200 family, SIMATIC S7-300/400 CPUs, ET200S/ET200M, etc.). A remote attacker with network access can cause a denial of service by breaking the real‑time synchroniza...

CVE-2019-10923

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization IRT of the affected installation...

PT-2019-3849 · Siemens · Siemens

Name of the Vulnerable Software and Affected Versions: Siemens products affected versions not specified Description: The issue is related to a potential denial of service condition caused by disrupting the real-time synchronization IRT of the affected installation. An attacker with network access...

The vulnerability of Intel microprocessor microprogramming software arises from synchronization errors when using shared resources, allowing attackers to disclose protected information.

The vulnerability of Intel microprogramming software arises from synchronization errors when using a common resource. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by the system...

CVE-2019-14957

The JetBrains Vim plugin before version 0.52 was storing individual project data in the global vimsettings.xml file. This xml file could be synchronized to a publicly accessible GitHub repository...

Unauthorized Access Vulnerability in Alibaba otter manager Distributed Database Synchronization System

Alibaba otter manager distributed database synchronization system is based on database incremental log parsing , quasi real-time synchronization to the local server room or off-site server room mysql/oracle database . A distributed database synchronization system . Alibaba otter manager distribut...

How To Troubleshoot And Fix The Situation When The ADM HA Is Not Working

One of the possible error conditions reported in the deployment is where in the GUI System - Deployment the following symptoms are reported: Heartbeats are not received from the secondary Data synchronization has failed on secondary Apart of the information displayed in GUI on primary node, there...

[SECURITY] Fedora 29 Update: systemd-239-14.git33ccd62.fc29

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

The vulnerability of the compression function in the Zstandard library allows a hacker to execute arbitrary code.

The vulnerability of the compression function in the Zstandard library for data compression is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Eclipse OpenJ9 virtual machine, related to synchronization errors when using a shared resource, allows a perpetrator to cause memory corruption.

The vulnerability of the Eclipse OpenJ9 virtual machine is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker operating remotely to cause memory corruption...

[SECURITY] Fedora 30 Update: systemd-241-12.git1e19bcd.fc30

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

RUSTSEC-2019-0018 Internally mutating methods take immutable ref self

Affected versions of this crate exposed several methods which took self by immutable reference, despite the requesting the RenderDoc API to set a mutable value internally. This is technically unsound and calling these methods from multiple threads without synchronization could lead to unexpected...

Internally mutating methods take immutable ref self

Affected versions of this crate exposed several methods which took self by immutable reference, despite the requesting the RenderDoc API to set a mutable value internally. This is technically unsound and calling these methods from multiple threads without synchronization could lead to unexpected...