Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities affecting multiple Adobe products. A cyber threat actor could exploit some of these vulnerabilities to take control of affected system. CISA encourages users and administrators to review the following advisories and apply the necessar...

VulnCheck KEV: CVE-2019-5129

A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. The parameter base64Url in...

APSB23-63 : Security update available for Adobe Media Encoder

Adobe has released an update for Adobe Media Encoder. This update resolves critical and moderate vulnerabilities that could lead to arbitrary code execution and memory leak...

PT-2023-7256 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Adobe Media Encoder versions 24.0.2 and earlier Adobe Media Encoder versions 23.6 and earlier Description: The issue is related to an out-of-bounds read when parsing a crafted file, potentially allowing an attacker to execute code in the...

PT-2023-7258 · Adobe · Media Encoder

Name of the Vulnerable Software and Affected Versions: Adobe Media Encoder versions 24.0.2 and earlier Adobe Media Encoder versions 23.6 and earlier Description: The issue is related to a Heap-based Buffer Overflow vulnerability in the Adobe Media Encoder application, which can be exploited to...

Adobe Media Encoder < 23.6.2 / 24.0.0 < 24.0.3 Multiple Vulnerabilities (APSB23-63) (macOS)

The version of Adobe Media Encoder installed on the remote macOS host is prior to 23.6.2, 24.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-63 advisory. - Adobe Media Encoder version 24.0.2 and earlier and 23.6 and earlier are affected by an out-of-bounds...

Adobe Media Encoder < 23.6.2 / 24.0.0 < 24.0.3 Multiple Vulnerabilities (APSB23-63)

The version of Adobe Media Encoder installed on the remote Windows host is prior to 23.6.2, 24.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-63 advisory. - Adobe Media Encoder version 24.0.2 and earlier and 23.6 and earlier are affected by an out-of-bound...

VulnCheck KEV: CVE-2019-5127

A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. The parameter base64Url in...

pocketdivxencoder.net Cross Site Scripting vulnerability OBB-3775684

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

jbig2enc Security Vulnerabilities

jbig2enc is an encoder for JBIG2. A security vulnerability exists in jbig2enc version v0.28, which stems from a memory segment error SEGV problem in the function jbig2addpage. An attacker could exploit this vulnerability to cause a Denial of Service DoS...

PT-2023-32951 · Php · Php

Name of the Vulnerable Software and Affected Versions: Base64 Encoder/Decoder WordPress plugin versions 0.9.2 and earlier PHP versions prior to 8.0.30 PHP versions prior to 8.1.22 PHP versions prior to 8.2.8 Description: The issue concerns a lack of CSRF check in the Base64 Encoder/Decoder...

CVE-2023-36790

Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability...

CVE-2023-36790

Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability...

Privilege escalation

Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability...

CVE-2023-36790

CVE-2023-36790 is a Windows vulnerability described as the Windows RDP Encoder Mirror Driver Elevation of Privilege vulnerability. The initial description and the MSRC entry indicate a local elevation of privilege, with a CVSSv3.1 base score of 7.8 (HIGH), attack vector LOCAL, privileges required...

CVE-2023-36790 Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability

...

Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability

...

Exploit for Out-of-bounds Write in Webmproject Libvpx

CVE-2023-5217: libvpx VP8 Encoding Heap Overflow PoC CVE-2023...

Medium: flac

Issue Overview: Buffer Overflow vulnerability in function bitwritergrow in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder. CVE-2020-22219 Affected Packages: flac Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this F...

Slackware: Security Advisory (SSA:2023-273-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...