CVE-2023-21502

Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...

CVE-2023-21502

Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...

Code injection

Active Debug Code vulnerability in ActivityManagerService prior to SMR May-2023 Release 1 allows attacker to use debug function via setting debug level...

Input validation

Improper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege escalation via debugging commands...

[SECURITY] Fedora 37 Update: python-sentry-sdk-1.21.1-1.fc37

Python Error and Performance Monitoring. Actionable insights to resolve Python performance bottlenecks and errors. See the full picture of any Python except ion so you can diagnose, fix, and optimize performance in the Python debugging process...

CVE-2023-31413

Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled...

SAMSUNG Mobile devices 输入验证错误漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, and more, from South Korea's Samsung SAMSUNG. A security vulnerability in SAMSUNG Mobile devices SMR May-2023 Release 1 previously existed in the FactoryTest application that allowed a local attacker to...

Companymaps 8.0 SQL Injection Vulnerability

Exploit Title: Unauthenticated SQL injection - Exploit Author: Lucas Noki 0xPrototype - Vendor Homepage: https://github.com/vogtmh - Software Link: https://github.com/vogtmh/cmaps - Version: 8.0 - Tested on: Mac, Windows, Linux - CVE : CVE-2023-29809 Description: The vulnerability found is an SQL...

CVE-2023-21502

CVE-2023-21502 affects the FactoryTest application prior to Samsung SMR May-2023 Release 1. Root cause is improper input validation, enabling local privilege escalation via debugging commands. Public details consistently describe local access requirements and privilege escalation; no remote/vecto...

[SECURITY] Fedora 36 Update: libpcap-1.10.4-1.fc36

Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this...

WordPress Plugin Custom Post Type UI 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

[SECURITY] Fedora 38 Update: libpcap-1.10.4-1.fc38

Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this...

Fedora: Security Advisory for libpcap (FEDORA-2023-a66bd67e34)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 37 Update: libpcap-1.10.4-1.fc37

Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this...

Update Rollup 5 for System Center 2019 Operations Manager

Update Rollup 5 for System Center 2019 Operations Manager Introduction This article describes the new features and issues that are fixed in System Center Operations Manager 2019 Update Rollup 5. This article also contains the installation instructions for this update. For the list of features tha...

debugHunter - Discover Hidden Debugging Parameters And Uncover Web Application Secrets

Discover hidden debugging parameters and uncover web application secrets with debugHunter. This Chrome extension scans websites for debugging parameters and notifies you when it finds a URL with modified responses. The extension utilizes a binary search algorithm to efficiently determine the...

USN-6018-1: Apport vulnerability

Chen Lu, Lei Wang, and YiQi Sun discovered a privilege escalation vulnerability in apport-cli when viewing crash reports and unprivileged users are allowed to run sudo less. A local attacker on a specially configured system could use this to escalate their privilege...

GHSA-CJR9-MR35-7XH6 SpiceDB binding metrics port to untrusted networks and can leak command-line flags

Background The spicedb serve command contains a flag named --grpc-preshared-key which is used to protect the gRPC API from being accessed by unauthorized requests. The values of this flag are to be considered sensitive, secret data. The /debug/pprof/cmdline endpoint served by the metrics service...

PikPak 安全漏洞

PikPak is a private online disk. A security vulnerability exists in PikPak v1.29.2, which stems from information leakage through the debugging interface...

sos bug fix and enhancement update

An update is available for sos. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sos package contains a set of utilities that gather information from system...