CVE-2022-32756

IBM Security Verify Directory 10.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 228507...

CVE-2022-24762

sysend.js is a library that allows a user to send messages between pages that are open in the same browser. Users that use cross-origin communication may have their communications intercepted. Impact is limited by the communication occurring in the same browser. This issue has been patched in...

icedtea-web: insecure temporary file use flaw in LiveConnect implementation

The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2 allows local users to read the messages between a Java applet and a web browser by pre-creating a temporary socket file with a predictable name in /tmp...

Microsoft SMB Client Remote Code Execution Vulnerabilities (2511455)

This host is missing a critical security update according to Microsoft Bulletin MS11-019. OpenVAS Vulnerability Test $Id: secpodms11-019.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft SMB Client Remote Code Execution Vulnerabilities 2511455 Authors: Veerendra GG Copyright: Copyright c 2011...