JetBrains WebStorm Installed (Mac OS X)

Binary data jetbrainswebstormmacosinstalled.nbin...

Open62541 安全漏洞

Open62541 is an open source implementation of OPC UA OPC Unified Architecture by Open62541 Open Source. A security vulnerability exists in Open62541 version 1.4.6, which stems from an assertion failure in fuzzbinarydecode that causes a crash...

Apple iOS < 18.1.1 Multiple Vulnerabilities (121752)

Binary data appleios1811check.nbin...

CVE-2024-53429

Open62541 v1.4.6 is has an assertion failure in fuzzbinarydecode, which leads to a crash...

Arbitrary File Upload

Overview django-filer is an A file management application for django that makes handling of files and images a breeze. Affected versions of this package are vulnerable to Arbitrary File Upload via the file upload mechanism allowing, by default, the upload of binary or unknown file types...

Grafana Labs SQL expressions allowing for RCE (CVE-2024-9264)

The version of Grafana Labs installed on the remote host is affected by a vulnerability as referenced in the CVE-2024-9264 advisory. - The SQL Expressions experimental feature of Grafana allows for the evaluation of 'duckdb' queries containing user input. These queries are insufficiently sanitize...

Apache Tomcat < 10.1.33 Vulnerability

Binary data 701491.pasl...

Apache Tomcat < 11.0.1 Vulnerability

Binary data 701490.pasl...

Apache Tomcat 10.1.27 < 10.1.31 / 10.1.0-M1 < 10.1.31 Multiple Vulnerabilities

Binary data 701494.pasl...

The vulnerability of the MongoDB database management system lies in improper handling of zero bytes during BSON data processing. This allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of the MongoDB database management system server is related to improper elimination of zero bytes. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures by sending specially crafted queries...

OESA-2024-2400 xstream security update

XStream is a simple library to serialize objects to XML and back again. A high level facade is supplied that simplifies common use cases. Custom objects can be serialized without need for specifying mappings. Speed and low memory footprint are a crucial part of the design, making it suitable for...

OESA-2024-2385 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...

OESA-2024-2384 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...

Beckhoff TwinCAT Package Manager Installed (Windows)

Binary data beckhofftwincatpackagemanagerwininstalled.nbin...

Siemens Solid Edge Installed (Windows)

Binary data siemenssolidedgewininstalled.nbin...

The software for configuring, monitoring, and controlling industrial equipment, Easergy Studio, has vulnerabilities related to insecure management of privileges. This allows attackers to escalate their privileges.

The vulnerability of the Easergy Studio software for configuring, monitoring, and controlling industrial equipment is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to enhance their privileges by modifying binary data...

Low: Red Hat Security Advisory: binutils security update

An update for binutils is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

The vulnerability in the `TracePluginImpl::writePacket` method of the `TracePluginImpl.cpp` module of the “Red Database” database management system allows a hacker to perform operations without being recorded in the audit log.

The vulnerability of the TracePluginImpl::writePacket method in the TracePluginImpl.cpp module of the “Red Database” database management system is related to the use of binary auditing when the cancelonerror parameter is enabled. Exploiting this vulnerability allows a remote attacker to even canc...

ALSA-2024:9689 Low: binutils security update

The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Security Fixes: binutils: heap-based buffer...

The vulnerability of the BinaryStreamDriver component in the Java library for converting objects to XML or JSON format, XStream. This vulnerability allows an attacker to perform a “denial-of-service” attack.

The vulnerability of the BinaryStreamDriver component in the Java library for converting objects to XML or JSON format, XStream, is related to buffer overflows in the stack of the manipulated binary input stream. Exploiting this vulnerability could allow a remote attacker to execute a...