GHSA-QR4W-53VH-M672 opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863

opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2...

Fortra FileCatalyst Workflow HSQLDB Static Password (CVE-2024-6633)

Binary data fortrafilecatalystworkflowcve-2024-6633.nbin...

pgAdmin 8.4 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'pgAdmin Binary Path API RCE', 'Description' = %q pgAdmin MSFLICENSE, 'Author' = 'M.Selim Karahan', metasploit module 'Mustafa Mutlu', lab prep. a...

pgAdmin 8.4 Remote Code Execution Exploit

pgAdmin versions 8.4 and below are affected by a remote code execution vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the securi...

pgAdmin Binary Path API RCE

pgAdmin use exploit/windows/http/pgadminbinarypathapi msf exploitpgadminbinarypathapi show targets ...targets... msf exploitpgadminbinarypathapi set TARGET msf exploitpgadminbinarypathapi show options ...show and set options... msf exploitpgadminbinarypathapi exploit This module requires...

ThingWorx Kepware Server Installed (Windows)

Binary data thingworxkepwareserverwininstalled.nbin...

Magento XXE (CVE-2024-34102)

Binary data magentoXXECVE-2024-34102.nbin...

ROS-20240827-06

The vulnerability in the Ruby interpreter is related to improper neutralization of input data during the generation of a of a web page. Exploitation of the vulnerability could allow an attacker acting locally to conduct cross-site scripting Vulnerability in the Active Storage component of the Rub...

Intel Trace Analyzer and Collector Installed (Windows)

Binary data inteltraceanalyzerandcollectorinstalled.nbin...

Intel oneAPI HPC Toolkit Installed (Windows)

Binary data intelhpctoolkitinstalled.nbin...

Forescout CounterACT Service Detection

Binary data forescoutcounteractservicedetect.nbin...

Johnson Controls exacqVision Client Installed (Linux)

Binary data johnsoncontrolsexacqvisionclientnixinstalled.nbin...

Johnson Controls exacqVision Client Installed (Windows)

Binary data johnsoncontrolsexacqvisionclientwininstalled.nbin...

Xiaomi AX9000 安全漏洞

Xiaomi Router AX9000 is the third generation of Xiaomi's flagship Wi-Fi6 product released on March 29, 2021- with support for WiFi6 Enhanced and a maximum theoretical rate of up to 3.5Gbps. Xiaomi Technology LLC Xiaomi Router AX9000 has a binary vulnerability that can be exploited by an attacker ...

Johnson Controls exacqVision Client Installed (macOS)

Binary data johnsoncontrolsexacqvisionclientmacinstalled.nbin...

GHSA-WQ9X-QWCQ-MMGF Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

The following presentation at this year's DEF CON was brought to our attention on the Diesel Gitter Channel: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to...

Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

The following presentation at this year's DEF CON was brought to our attention on the Diesel Gitter Channel: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to...

Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control

Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliances and evade detection. The activity, attributed to Velvet Ant, was observed early this year and involved the...

Intel Connectivity Performance Suite Installed (Windows)

Binary data intelconnectivityperformancesuitewininstalled.nbin...

GO-2022-0395 GitHub CLI can execute a git binary from the current directory in github.com/cli/cli

GitHub CLI can execute a git binary from the current directory in github.com/cli/cli...