RUSTSEC-2023-0010 Double free after calling `PEM_read_bio_ex`

The function PEMreadbioex reads a PEM file from a BIO and parses and decodes the "name" e.g. "CERTIFICATE", any header data and the payload data. If the function succeeds then the "nameout", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data...

CVE-2015-10075 Custom-Content-Width custom-content-width.php register_settings cross site scripting

A vulnerability was found in Custom-Content-Width 1.0. It has been declared as problematic. Affected by this vulnerability is the function overridecontentwidth/registersettings of the file custom-content-width.php. The manipulation leads to cross site scripting. The attack can be launched remotel...

VMware Finds No Evidence of 0-Day in Ongoing ESXiArgs Ransomware Spree

VMware on Monday said it found no evidence that threat actors are leveraging an unknown security flaw, i.e., a zero-day, in its software as part of an ongoing ransomware attack spree worldwide. "Most reports state that End of General Support EoGS and/or significantly out-of-date products are bein...

Florida hospital takes entire IT systems offline after 'ransomware attack'

Tallahassee Memorial Healthcare TMH, a major hospital system in northern Florida, has reportedly been experiencing an "IT security issue" since Thursday evening, which impacted some of its IT systems. When TMH learned of the issue, it took its entire IT systems offline as a precaution and contact...

OWM Weather < 5.6.12 - Post Duplication via CSRF

The plugin does not have CSRF check when duplicating posts which will be duplicated as drafts, which could allow attackers to make logged in admin perform such action via a CSRF attack and fill up the post table...

Vulnerability in OpenSSL - Timing Oracle in RSA Decryption

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

CVE-2022-4304

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages fo...

Yet More ImageMagick Vulnerabilities

ImageMagick is a popular open-source image manipulation library used by many websites and software applications to process and display images. A couple of vulnerabilities have recently been discovered in ImageMagick by MetabaseQ. Two vulnerabilities CVE-2022-44267 and CVE-2022-44268 allow attacke...

0mk Shortener <= 0.2 - Stored XSS via CSRF

Description The plugin does not have CSRF check in its settings, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

ShopLentor < 2.5.2 - Settings Update via CSRF

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

Denial Of Service (DoS)

kernel is vulnerable to Denial of Service DoS attacks. The vulnerability exists in the smb2ioctlqueryinfo function of fs/cifs/smb2ops.c, in Common Internet File System CIFS due to an incorrect return from the memdupuser function. This flaw allows a local, privileged attacker to crash the system...

Business Email Compromise attack imitates vendors, targets supply chains

Today we have a fascinating tale of a business email compromise BEC group steering clear of targeting executives, in favour of fouling up supply chains instead. The attack, which may sound overly complicated, is a fairly streamlined attack with the intention of making a lot of money. BEC: What is...

Ice Breaker a Looming Threat on the Gaming Industry

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Online gaming and gambling companies have been targeted by hackers using unseen backdoors. The attacks are grouped together and referred to as "Ice Breaker." The intrusions make use of smart social...

Xxe

IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 226328...

The vulnerability of the web server of the microprogrammed Ethernet switch Moxa SDS-3008 allows a intruder to trigger a service failure.

The vulnerability of the web server of the microprogrammed Ethernet switch Moxa SDS-3008 is related to insufficient resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by sending specially crafted HTTP requests...

Tableau Server Input Validation XSS

The version of Tableau running on the remote host is affected by an XSS vulnerability that could allow malicious actors to extract sensitive data from the application. An attacker could leverage the cross-site scripting vulnerability to conduct an attack against a user and gain access to sensitiv...

CVE-2022-22486

IBM Tivoli Workload Scheduler (versions 9.4, 9.5, 10.1) is vulnerable to an XML External Entity (XXE) injection when processing XML data. Root cause: XXE in XML processing. Impact per sources: potential exposure of sensitive information and resource consumption. Remediation in connected documents...

CVE-2022-3560

A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs a script to set ACLs for /etc/pki/pesign and /run/pesign directories to grant access privileges to users in the 'pesign' group. However, the script doesn't check for...

CVE-2023-22501

CVE-2023-22501 affects Jira Service Management Server and Data Center. It is an authentication vulnerability allowing impersonation to access signup tokens for users with never-logged-in accounts, if an attacker has write access to a User Directory and outgoing email enabled, and can access token...

F5 BIG-IP SIP profile denial of service vulnerability

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in the F5 BIG-IP SIP profile, where undisclosed traffic could cause TMM to terminate...