Security Bulletin: IBM Synthetic Playback Agent is vulnerable due to its use of Apache Commons Text [CVE-2022-42889]

Summary Synthetic Playback Agent version 8.1.4 IF17 has addressed the following vulnerability: CVE-2022-42889 Vulnerability Details CVEID:CVE-2022-42889 DESCRIPTION: Apache Commons Text could allow a remote attacker to execute arbitrary code on the system, caused by an insecure interpolation...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.9.0 ESR +  CVE-2020-16044) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF13 + CP4MCM2.2

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-16044 Vulnerability Details CVEID: CVE-2020-16044 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free write when handling a malicious...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 78.5 ESR + CVE-2020-26950) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF12 + ICAM2019.3.0 - 2020.2.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-26950 Vulnerability Details CVEID: CVE-2020-26950 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by the failure to account for write side effects in...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.11.0 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-15649, CVE-2020-15650 Vulnerability Details CVEID: CVE-2020-15649 DESCRIPTION: Mozilla Firefox could allow a remote attacker to bypass security restrictions. By persuading a victim to install a specially crafte...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.12.0 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-12419, CVE-2020-12418, CVE-2020-12420 Vulnerability Details CVEID: CVE-2020-12419 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free i...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.9.0 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-12405, CVE-2020-12406, CVE-2020-12399 Vulnerability Details CVEID: CVE-2020-12405 DESCRIPTION: Mozilla Firefox is vulnerable to a denial of service, caused by a use-after-free in SharedWorkerService. By...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.9.0 ESR + CVE-2020-12410) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.2.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-12410 Vulnerability Details CVEID: CVE-2020-12410 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by memory safety bugs within the browser engine. By...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.6.1 ESR + CVE-2020-6820) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.1.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-6820 Vulnerability Details CVEID: CVE-2020-6820 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free flaw when handling a ReadableStream...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.6.1 ESR) hava affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF11 + ICAM2019.3.0 - 2020.1.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-6819 Vulnerability Details CVEID: CVE-2020-6819 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free flaw when running the nsDocShell...

Security Bulletin: Multiple vulnerabilities of Mozilla Firefox (less than Firefox 68.5.0 ESR) have affected Synthetic Playback Agent 8.1.4.0-8.1.4 IF10 + ICAM 3.0 - 4.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2020-6796, CVE-2020-6800, CVE-2020-6798 Vulnerability Details CVEID: CVE-2020-6796 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write...

Security Bulletin: Multiple vulnerabilities of Mozzila Firefox (less than Firefox 68.4 ESR) have affected Synthetic Playback Agent 8.1.4.0 - 8.1.4 IF10 + ICAM 3.0 - 4.0

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2019-17017, CVE-2019-17022, CVE-2019-17024 Vulnerability Details CVEID: CVE-2019-17022 DESCRIPTION: Mozilla Firefox is vulnerable to cross-site scripting, caused by the failure of the CSS sanitization to escape HTML...

Security Bulletin: One vulnerability of Mozzila Firefox (less than Firefox 60.7.1 ESR) has affected Synthetic Playback Agent 8.1.4.0 - 8.1.4 IF07

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2019-11707 Vulnerability Details CVEID: CVE-2019-11707 DESCRIPTION: A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. ...

Security Bulletin: One vulnerability of Mozzila Firefox (less than Firefox 60.7.2 ESR) has affected Synthetic Playback Agent 8.1.4.0 - 8.1.4 IF07

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-2019-11708 Vulnerability Details CVEID: CVE-2019-11708 DESCRIPTION: Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed paren...

Security Bulletin: Multiple vulnerabilities of Mozzila Firefox (less than Firefox 68.2.0 ESR) have affected Synthetic Playback Agent 8.1.4.0 - 8.1.4 IF09

Summary Synthetic Playback Agent has addressed the following vulnerabilities: CVE-ID: CVE-2019-11761,CVE-ID: CVE-2019-11762,CVE-ID: CVE-2019-11760,CVE-ID: CVE-2019-11763,CVE-ID: CVE-2019-11759,CVE-ID: CVE-2019-11757 Vulnerability Details CVEID: CVE-2019-11761 DESCRIPTION: CVSS Base score: 6.5 CVS...