UBUNTU-CVE-2023-21122

In various functions of various files, there is a possible way to bypass the DISALLOWDEBUGGINGFEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

UBUNTU-CVE-2023-21123

In multiple functions of multiple files, there is a possible way to bypass the DISALLOWDEBUGGINGFEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21123

In multiple functions of multiple files, there is a possible way to bypass the DISALLOWDEBUGGINGFEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21122

In various functions of various files, there is a possible way to bypass the DISALLOWDEBUGGINGFEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21123

CVE-2023-21123 affects multiple Android versions (11–13). The issue is a bypass of the DISALLOW_DEBUGGING_FEATURES restriction in tracing due to a missing permission check in several functions/files, enabling local elevation of privilege without extra execution privileges. Reported impact is elev...

Siemens SIMOTION and SIMOTION P320 Information Disclosure Vulnerability

SIMOTION is a scalable, high-performance motion control hardware and software system.SIMOTION P320 is an industrial PC for motion control. An information disclosure vulnerability exists in the Siemens SIMOTION and SIMOTION P320, which arises from the device not protecting access to certain servic...

USN-6160-1: GNU binutils vulnerability

It was discovered that GNU binutils incorrectly performed bounds checking operations when parsing stabs debugging information. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

CVE-2023-27465

A vulnerability has been identified in SIMOTION C240 All versions = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4, SIMOTION D445-2 DP/PN All versions = V5.4 = V5.4 = V5.4, SIMOTION P320-4 S All versions = V5.4. When operated with Security Level Low the device does not protect acces...

Design/Logic Flaw

A vulnerability has been identified in SIMOTION C240 All versions = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4, SIMOTION D445-2 DP/PN All versions = V5.4 = V5.4 = V5.4, SIMOTION P320-4 S All versions = V5.4. When operated with Security Level Low the device does not protect acces...

CVE-2023-27465

CVE-2023-27465 affects Siemens SIMOTION products (C240, C240 PN, D410-2/PN, D425-2/PN, D435-2/PN, D445-2/PN, D455-2/PN, P320-4 E/S) with V5.4–V5.5 SP1. Root cause: lack of protection for debugging-related services when Security Level Low, enabling an unauthenticated attacker to extract confidenti...

CVE-2023-27465

A vulnerability has been identified in SIMOTION C240 All versions = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4 = V5.4, SIMOTION D445-2 DP/PN All versions = V5.4 = V5.4 = V5.4, SIMOTION P320-4 S All versions = V5.4. When operated with Security Level Low the device does not protect acces...

Siemens SIMOTION 信息泄露漏洞

SIMOTION is a scalable, high-performance motion control hardware and software system.SIMOTION P320 is an industrial PC for motion control. An information disclosure vulnerability exists in the Siemens SIMOTION and SIMOTION P320, which arises from the device not protecting access to certain servic...

PT-2023-3372 · Siemens · Simotion D435-2 Dp +6

Name of the Vulnerable Software and Affected Versions: SIMOTION C240 versions 5.4 through 5.5 SP1 SIMOTION C240 PN versions 5.4 through 5.5 SP1 SIMOTION D410-2 DP versions 5.4 through 5.5 SP1 SIMOTION D410-2 DP/PN versions 5.4 through 5.5 SP1 SIMOTION D425-2 DP versions 5.4 through 5.5 SP1 SIMOTI...

Fuji Electric FRENIC RHC Loader 代码问题漏洞

Fuji Electric FRENIC RHC Loader is a software tool developed by Fuji Electric Japan for debugging and monitoring inverters, mainly serving the industrial automation field. The Fuji Electric FRENIC RHC Loader suffers from an XML external entity reference vulnerability that can be exploited by an...

WordPress plugin Easy Forms for Mailchimp 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks

A crypter alternatively spelled cryptor malware dubbed AceCryptor has been used to pack numerous strains of malware since 2016. Slovak cybersecurity firm ESET said it identified over 240,000 detections of the crypter in its telemetry in 2021 and 2022. This amounts to more than 10,000 hits per...

OOB Read segfault

Environment bash Distributor ID: Debian Description: Debian GNU/Linux bookworm/sid Release: n/a Codename: bookworm Version I checked against the latest release as of 05/18/23 the current master branch at commit a6ae93532ea5615c876c81a6580badbfa01d4383 . Description This AddressSanitizer output is...

kodbox 跨站脚本漏洞

kodbox is a web file manager. A security vulnerability exists in kodbox 1.37 and earlier versions, which is rooted in a vulnerability to cross-site scripting XSS attacks via debugging messages...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for loading operating systems on Windows is related to errors in accessing debugging functions during the loading process. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

PT-2025-25967 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc6+ Description: A vulnerability in the Linux kernel has been resolved, which was causing a call trace with a null VSI during VF reset. The issue occurred during stress tests with attaching and detaching...