keycloak: failedLogin Event not sent to BruteForceProtector when using Post Login Flow with Conditional-OTP

A flaw was found in keycloak. BruteForceProtector does not handle Conditional OTP Authentication Flow login failure events due to these events not being sent to the brute force protection event queue. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

CVE-2020-9546

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

CVE-2020-1744

A flaw was found in keycloak. BruteForceProtector does not handle Conditional OTP Authentication Flow login failure events due to these events not being sent to the brute force protection event queue. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

samba: Crash after failed character conversion at log level 3 or above

A flaw was found in samba. When log levels are set at 3 or higher, the string obtained from the client, after a failed character conversion, is printed which could cause long-lived processes to terminate. The highest threat from this vulnerability is to system availability...

libvncserver: integer overflow and heap-based buffer overflow in libvncclient/cursor.c in HandleCursorShape function

A flaw was found in libvncserver in versions through 0.9.12. A large height or width value may cause an integer overflow or a heap-based buffer overflow. The highest threat from this vulnerability is to system availability...

libvncserver: HandleCursorShape() integer overflow resulting in heap-based buffer overflow

A flaw was found in libvncserver. An integer overflow within the HandleCursorShape function can be exploited to cause a heap-based buffer overflow by tricking a user or application using libvncserver to connect to an unstrusted server and subsequently send cursor shapes with specially crafted...

HTTP/2: flood using empty frames results in excessive resource consumption

A flaw was found in HTTP/2. Using frames with an empty payload, a flood could occur that results in excessive CPU usage and starvation of other clients. The highest threat from this vulnerability is to system availability...

CVE-2020-7006

Systech Corporation NDS-5000 Terminal Server, NDS/5008 8 Port, RJ45, firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availability, and may allow remote code execution...

Remote code execution

Systech Corporation NDS-5000 Terminal Server, NDS/5008 8 Port, RJ45, firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availability, and may allow remote code execution...

CVE-2020-7006

CVE-2020-7006 affects Systech NDS-5000 Terminal Server/NDS-5008 (8 Port, RJ45) firmware version 02D.30. The issue is a stored cross-site scripting (CWE-79) vulnerability in the WEB application, enabling potential client-side code execution and information disclosure with remote impact. Affected p...

CVE-2020-7006

Systech Corporation NDS-5000 Terminal Server, NDS/5008 8 Port, RJ45, firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availability, and may allow remote code execution...

zsh: insecure dropping of privileges when unsetting PRIVILEGED option

A flaw was found in zsh. When unsetting the PRIVILEGED option, the shell sets its effective user and group IDs to match their respective real IDs. When the RUID and EUID were both non-zero, it is possible to regain the shell's former privileges. Also, the setopt built-in did not correctly report...

PT-2021-13830 · Podman +5 · Podman +5

Name of the Vulnerable Software and Affected Versions: podman versions prior to 1.7.0 Description: A flaw was found in podman where file permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the containe...

Systech NDS-5000 Terminal Server

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Systech Corporation Equipment: NDS-5000 Terminal Server Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow information disclosure,...

zsh: insecure dropping of privileges when unsetting PRIVILEGED option

A flaw was found in zsh. When unsetting the PRIVILEGED option, the shell sets its effective user and group IDs to match their respective real IDs. When the RUID and EUID were both non-zero, it is possible to regain the shell's former privileges. Also, the setopt built-in did not correctly report...

CVE-2020-9391

A heap corruption flaw was found in the Linux kernel on the AArch64 architecture. The top byte is ignored in the address passed to the brk system call, potentially moving the memory break downwards when the application expects it to move upwards. This has been observed to cause heap corruption...

KLA12095 DoS vulnerability in VMWare Workstation and Player

A denial of service vulnerability was found in VMWare Workstation and Player. Malicious users can exploit this vulnerability to cause denial of service. Original advisories VMSA-2020-0005 Related products VMware-Workstation VMware-Player CVE list CVE-2020-3951 warning Solution Update to the lates...

CVE-2019-15690

A flaw was found in libvncserver. An integer overflow within the HandleCursorShape function can be exploited to cause a heap-based buffer overflow by tricking a user or application using libvncserver to connect to an unstrusted server and subsequently send cursor shapes with specially crafted...

CVE-2020-1751

An out-of-bounds write vulnerability was found in glibc when handling signal trampolines on PowerPC. The backtrace function did not properly check the array bounds when storing the frame address resulting in a denial of service or potential code execution. The highest threat from this vulnerabili...

CVE-2020-10029

A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability...