1723 matches found
Pexip Infinity 安全漏洞
Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. Pexip Infinity is vulnerable to an input validation error that could be exploited by attackers to trigger a software abort, resulting in a...
PT-2022-17987 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to force a software abort via HTTP. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
Pexip Infinity 安全漏洞
Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from Pexip, a Norwegian company. Pexip Infinity is vulnerable to an input validation error that could be exploited by an attacker to trigger a software abort via One Touch Joi...
Pexip Infinity 输入验证错误漏洞
Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. Pexip Infinity is vulnerable to an input validation error that could be exploited by attackers to trigger a software abort, resulting in a...
PT-2022-18700 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to trigger a software abort via One Touch Join. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
PT-2022-18696 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions 27.0 through 27.2 Description: The issue allows remote attackers to trigger a software abort via HTTP. Recommendations: For versions 27.0 through 27.2, update to version 27.3 or later to resolve the issue...
PT-2022-18702 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to trigger a software abort via HTTP. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
PT-2022-18704 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to trigger a software abort via H.323. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
PT-2022-18701 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to trigger a software abort via One Touch Join. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
PT-2022-18703 · Pexip · Pexip Infinity
Name of the Vulnerable Software and Affected Versions: Pexip Infinity versions prior to 27.3 Description: The issue allows remote attackers to trigger a software abort via Epic Telehealth. Recommendations: For versions prior to 27.3, update to version 27.3 or later to resolve the issue...
Pexip Infinity 安全漏洞
Pexip Infinity Pexip Video Conferencing Cloud Collaboration Platform is a video conferencing cloud collaboration platform from the Norwegian company Pexip. Pexip Infinity is vulnerable to an input validation error that could be exploited by attackers to trigger a software abort, resulting in a...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: buffer overflow in IPsec ESP transformation code CVE-2022-27666 kernel: out-of-bounds read in fbcongetfont function CVE-2020-28915 For more details about the security issues, including th...
GSD-2022-1003400 scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock
scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...
kernel security and bug fix update
An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...
Apache HTTP Server mod_sed denial of service vulnerability
Apache HTTP Server is an open source web server from the Apache Foundation. Apache HTTP Server modsed suffers from a denial-of-service vulnerability that stems from the fact that modsed may allocate too much memory and trigger an abort when modsed input is too large. An attacker could exploit thi...
Internet Bug Bounty: DoS via lua_read_body() [zhbug_httpd_94]
Greetings. I have found a bug that can crash httpd 2.4.53, causing a denial of service. The bug is that luareadbody modules/lua/luarequest.c uses the value of the Content-Length header to allocate memory. While apreadrequest limits Content-Length's value to a non-negative |aprofft| via a call to...
CVE-2022-30522
If Apache HTTP Server 2.4.53 is configured to do transformations with modsed in contexts where the input to modsed may be very large, modsed may make excessively large memory allocations and trigger an abort...
ALPINE-CVE-2022-30522
If Apache HTTP Server 2.4.53 is configured to do transformations with modsed in contexts where the input to modsed may be very large, modsed may make excessively large memory allocations and trigger an abort...
GHSA-Q4WP-8C99-69PW Improper permission checks allow canceling queue items and aborting builds in Jenkins
Jenkins 2.299 and earlier, LTS 2.289.1 and earlier allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission. Jenkins 2.300, LTS 2.289.2 requires that users have Item/Read permission for applicable types ...