12 matches found
EUVD-2023-43073
Malicious code in bioql PyPI...
CVE-2023-39342
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
CVE-2023-39342
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
Code injection
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
CVE-2023-39342
CVE-2023-39342 affects Dangerzone CLI (dangerzone-cli) prior to 0.4.2. The issue arises because the CLI logs container-output from the sanitization process to the user’s terminal and also logs file names; if the container is compromised, an attacker could return attacker-controlled strings to spo...
CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters
Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...
Dangerzone Security Breach
Dangerzone is a software application. There are potentially dangerous PDF files, office documents, pictures and convert them into a secure PDF. Dangerzone 0.4.2 prior to the version of a security vulnerability, the vulnerability stems from the dangerzone-cli command to file cleanup container outp...
PT-2023-26889 · Unknown · Dangerzone
Name of the Vulnerable Software and Affected Versions: Dangerzone versions prior to 0.4.2 Description: The issue affects the Dangerzone CLI, where output from the container is logged to the user's terminal. If the container is compromised, an attacker may spoof messages in the terminal or change...
Dangerzone Lets You Open Email Attachments Safely
Dangerzone takes potentially malicious files and safely sanitizes them for you...
Metasploit, [REDACTED] Edition
Why should REDACTED have all the fun with spiffy codenames for their exploits? As of today, Metasploit is taking a page from REDACTED, and equipping all Metasploit modules with equally fear-and-awe-inspiring codenames. Sure, there are catchy names for vulnerabilities -- we remember you fondly,...