jenkins-plugin-workflow-remote-loader: Unsafe Script Security whitelist entry in Pipeline Remote Loader Plugin (SECURITY-921)

A flaw was found in the Jenkins Workflow Remote Loader plugin. An unsafe whitelist entry was made that allowed invoking arbitrary methods and bypassing sandbox protection. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

KLA11504 Incorrect parameters parsing vulnerability in Mozilla Firefox

Vulnerability, related to insufficient vetting of parameters passed with the Prompt:Open IPC message was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories - Related products Mozilla-Firefox...

CVE-2019-12749

A flaw was found in dbus. The implementation of DBUSCOOKIESHA1 is susceptible to a symbolic link attack. A malicious client with write access to its own home directory could manipulate a /.dbus-keyrings symlink to cause the DBusServer to read and write in unintended locations resulting in an...

libvirt: wrong permissions in systemd admin-sock due to missing SocketMode parameter

A flaw was found in libvirt in version 4.1.0 and earlier. A missing SocketMode configuration parameter allows any user on the host to connect using virtlockd-admin-sock or virtlogd-admin-sock and perform administrative tasks against the virtlockd and virtlogd daemons. The highest threat from this...

rubygems: Installing a malicious gem may lead to arbitrary code execution

A flaw was found in RubyGems. A crafted gem with a multi-line name is not handled correctly allowing an attacker to inject arbitrary code to the stub line of gemspec. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

rubygem-actionpack: render file directory traversal in Action View

A content disclosure flaw was found in rubygem-actionview. Specially crafted accept headers, in combination with calls to 'render file:', can cause arbitrary files on the target server to be rendered, disclosing the file contents. Code execution cannot be ruled out if the attacker is able to gain...

dotnet: NuGet Tampering Vulnerability

A flaw was found in dotnet. A tampering vulnerability exists in NuGet software when executed in a Linux or Mac environment. An attacker who successfully exploits the vulnerability could run arbitrary code in the context of the current user. The highest threat from this vulnerability is to data...

python-jinja2: str.format_map allows sandbox escape

A flaw was found in Jinja. Python string formatting could allow an attacker to escape the sandbox. The highest threat from this vulnerability is to data confidentiality and integrity and system availability...

Denial Of Service (DoS)

Binutils is vulnerable to denial of service DoS attacks. The vulnerability exists in the coffpointerizeaux function in coffgen.c in the Binary File Descriptor BFD library due to not validating an index. An attacker could cause an application crash cia a crafted file impacting the availability of...

Denial Of Service (DoS)

libmspack is vulnerable to denial of service DoS attacks. This vulnerability exists in an unknown part of the file mspack/chmd.c of the component CHM Filename Handler. The manipulation as a part of a blank file name could cause an application crash affecting the availability of the system...

rubygems: Installing a malicious gem may lead to arbitrary code execution

A flaw was found in RubyGems. A crafted gem with a multi-line name is not handled correctly allowing an attacker to inject arbitrary code to the stub line of gemspec. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

CVE-2019-6574

A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or G46, SINAMICS PERFECT HARMONY GH180 with NXG II control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- All...

Denial of service

A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- All Versions with option G28, SINAMICS PERFECT HARMONY GH180 with NXG II control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- All Versions with option G28. A denial of service...

rubygems: Installing a malicious gem may lead to arbitrary code execution

A flaw was found in RubyGems. A crafted gem with a multi-line name is not handled correctly allowing an attacker to inject arbitrary code to the stub line of gemspec. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

flatpak: Sandbox bypass via IOCSTI (incomplete fix for CVE-2017-5226)

An incomplete fix for CVE-2017-5226 was found in flatpak. A sandbox bypass flaw was found in the way bubblewrap, which is used for sandboxing flatpak applications handled the TIOCSTI ioctl. A malicious flatpak application could use this flaw to inject commands into the controlled terminal of the...

Information Disclosure

Oracle Java SE is vulnerable to information disclosure vulnerability. The vulnerability exists in the Java Runtime Environment JRE component in Oracle Java SE because the Network component does not properly perform InetAddress serialization. Remote attackers could obtain sensitive information and...

The vulnerability of the software platform for integrating Spring Integration corporate applications lies in improper restrictions on XML references to external objects. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the software platform for integrating Spring Integration corporate applications is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility o...

edk2: Buffer Overflow in BlockIo service for RAM disk

A flaw was found in edk2. When registering a RAM disk whose size is not a multiple of 512 bytes, the BlockIo protocol produced by the RamDiskDxe driver will incur memory read/write overrun. The memory overrun will happen when reading/writing the last block on the RAM disk. The highest threat from...

Oracle Database Server Portable Clusterware Component Access Control Error Vulnerability

Oracle Database Server is a set of relational database management system Oracle Oracle. The database management system provides data management, distributed processing and other functions.Portable Clusterware is one of the cluster hardware management components. A security vulnerability exists in...

Oracle Database Server Portable Clusterware Access Control Error Vulnerability

Oracle Database Server is a set of relational database management system Oracle Oracle. The database management system provides data management, distributed processing and other functions.Portable Clusterware is one of the cluster hardware management components. A security vulnerability exists in...