1944 matches found
kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests
A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...
kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests
A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...
kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests
A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...
kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests
A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...
[SECURITY] Fedora 40 Update: ecj-4.23-9.fc40
ECJ is the Java bytecode compiler of the Eclipse Platform. It is also known as the JDT Core batch compiler...
BIT-TENSORFLOW-2022-21728 Out of bounds read in Tensorflow
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ReverseSequence does not fully validate the value of batchdim and can result in a heap OOB read. There is a check to make sure the value of batchdim does not go over the rank of the input, but there...
BIT-APISIX-2022-24112 apisix/batch-requests plugin allows overwriting the X-REAL-IP header
An attacker can abuse the batch-requests plugin to send requests to bypass the IP restriction of Admin API. A default configuration of Apache APISIX with default API key is vulnerable to remote code execution. When the admin key was changed or the port of Admin API was changed to a port different...
Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
TeamCity Exploit Script 🛠️ This script is designed to demonst...
Fedora: Security Advisory (FEDORA-2024-5e50570506)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for gifsicle (FEDORA-2024-4672c1ff2d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: gifsicle-1.95-1.fc38
Gifsicle is a command-line tool for creating, editing, and getting information about GIF images and animations. Some more gifsicle features: Batch mode for changing GIFs in place. Prints detailed information about GIFs, including comments. Control over interlacing, comments, looping,...
[SECURITY] Fedora 39 Update: gifsicle-1.95-1.fc39
Gifsicle is a command-line tool for creating, editing, and getting information about GIF images and animations. Some more gifsicle features: Batch mode for changing GIFs in place. Prints detailed information about GIFs, including comments. Control over interlacing, comments, looping,...
Piwigo Security Breach
Piwigo is a Web-based open source photo gallery software. The software includes features such as image management, image categorization and permission management. A security vulnerability exists in versions prior to Piwigo v.14.2.0, which allows remote attackers to elevate privileges through the...
This Week in Spring - February 27th, 2024
Hi, Spring fans! Welcome to another installment of This Week in Spring wherein we explore the latest-and-greatest in the wonderful world of Springdom. This week's going to be a very good one, so let's dive right into it! good news everyone! Spring Boot's been updated! 3.3.0-M2, 3.2.3, and 3.1.9 a...
Exploit for CVE-2024-25600
CVE-2024-25600 Exploit Tool 🚀 Description 📝 This tool 🛠️...
Exploit for CVE-2024-25600
CVE-2024-25600 Exploit Tool 🚀 Description 📝 This tool 🛠️...
CVE-2023-48363
A vulnerability has been identified in OpenPCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC BATCH V9.1 All versions V9.1 SP2 UC05, SIMATIC PCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC Route Control V9.1 All versions V9.1 SP2 UC05, SIMATIC WinCC Runtime Professional V18 All versions V18 Update 4,...
CVE-2023-48364
A vulnerability has been identified in OpenPCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC BATCH V9.1 All versions V9.1 SP2 UC05, SIMATIC PCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC Route Control V9.1 All versions V9.1 SP2 UC05, SIMATIC WinCC Runtime Professional V18 All versions V18 Update 4,...
Design/Logic Flaw
A vulnerability has been identified in OpenPCS 7 V9.1 All versions, SIMATIC BATCH V9.1 All versions, SIMATIC PCS 7 V9.1 All versions, SIMATIC Route Control V9.1 All versions, SIMATIC WinCC Runtime Professional V18 All versions, SIMATIC WinCC Runtime Professional V19 All versions, SIMATIC WinCC V7...
Design/Logic Flaw
A vulnerability has been identified in OpenPCS 7 V9.1 All versions, SIMATIC BATCH V9.1 All versions, SIMATIC PCS 7 V9.1 All versions, SIMATIC Route Control V9.1 All versions, SIMATIC WinCC Runtime Professional V18 All versions, SIMATIC WinCC Runtime Professional V19 All versions, SIMATIC WinCC V7...