PT-2023-29099 · Unknown · Kernel Module

Name of the Vulnerable Software and Affected Versions: Kernel module affected versions not specified Description: The issue is related to data verification errors in the kernel module. Successful exploitation may cause WLAN interruption. Recommendations: At the moment, there is no information abo...

The vulnerability of the Updater service in Parallels Desktop hypervisor allows a hacker to execute arbitrary code and increase their privileges.

The vulnerability of the Updater service in Parallels Desktop operating systems is related to initialization errors. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...

The vulnerability of the Parallels Desktop Hypervisor Service allows a attacker to execute arbitrary code and gain elevated privileges.

The vulnerability of the Parallels Desktop Hypervisor Service is related to initialization errors. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...

The vulnerability of the Toolgate component in Parallels Desktop hypervisor allows a hacker to execute arbitrary code and increase their privileges.

The vulnerability of the Toolgate controller in Parallels Desktop involves synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...

GHSA-H56G-GQ9V-VC8R jupyter-server errors include tracebacks with path information

Impact Unhandled errors in API requests include traceback information, which can include path information. There is no known mechanism by which to trigger these errors without authentication, so the paths revealed are not considered particularly sensitive, given that the requesting user has...

jupyter-server errors include tracebacks with path information

Impact Unhandled errors in API requests include traceback information, which can include path information. There is no known mechanism by which to trigger these errors without authentication, so the paths revealed are not considered particularly sensitive, given that the requesting user has...

Information Disclosure

jupyterserver is vulnerable to Information Disclosure. An information disclosure flaw exists due to unhandled errors in API requests. While not directly allowing unauthorized access, these errors may leak sensitive path information in responses, potentially revealing sensitive server details to...

An attacker can manipulate the preDepositvePrice to steal from other users.

Lines of code Vulnerability details Impact The first user that stakes can manipulate the total supply of sfTokens and by doing so create a rounding error for each subsequent user. In the worst case, an attacker can steal all the funds of the next user. Proof of Concept When the first user enters...

UBUNTU-CVE-2023-49080

The Jupyter Server provides the backend i.e. the core services, APIs, and REST endpoints for Jupyter web applications like Jupyter notebook, JupyterLab, and Voila. Unhandled errors in API requests coming from an authenticated user include traceback information, which can include path information...

CVE-2023-49080

The Jupyter Server provides the backend i.e. the core services, APIs, and REST endpoints for Jupyter web applications like Jupyter notebook, JupyterLab, and Voila. Unhandled errors in API requests coming from an authenticated user include traceback information, which can include path information...

Design/Logic Flaw

The Jupyter Server provides the backend i.e. the core services, APIs, and REST endpoints for Jupyter web applications like Jupyter notebook, JupyterLab, and Voila. Unhandled errors in API requests coming from an authenticated user include traceback information, which can include path information...

The vulnerability of the Private Key Handler component in the server that unlocks encrypted disks of Tang allows a hacker to disclose the protected information.

The vulnerability of the Private Key Handler component in the server that unlocks encrypted disks of the Tang service is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to disclose sensitive information...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to pointer naming errors, allows attackers to trigger a service failure.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the McAfee Web Gateway, related to code errors, allows attackers to trigger a service failure.

The vulnerability of the McAfee Web Gateway is related to errors in the code. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the nft_inner.c component in the Linux operating system’s network interface layer allows a hacker to trigger a service failure or increase their privileges.

The vulnerability of the nftinner.c component in the Linux operating system’s network interface layer is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges...

The vulnerability of the graphics driver of Intel microprogramming software allows a hacker to trigger a service failure.

The vulnerability of the graphics driver of Intel microprogramming systems is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of graphic drivers in microprogramming software for Intel processors, related to pointer swapping errors, allows attackers to cause system failures.

The vulnerability of graphics drivers in microprogramming software for Intel processors is related to pointer assignment errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the application interface for WebDAV web applications used for syncing data with ownCloud allows a perpetrator to bypass authentication procedures and gain access to read, modify, or delete data.

The vulnerability of the WebDAV application interface for data synchronization with ownCloud is related to initialization errors caused by the lack of configuration of signature keys for pre-signed URL addresses. Exploiting this vulnerability allows an attacker to bypass authentication procedures...

The vulnerability of the PSP-files of the GIMP graphic editor allows a hacker to execute arbitrary code.

The vulnerability of the PSP-files of the GIMP graphic editor is related to numerical processing errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Microsoft Edge browser, related to information representation errors in the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform spear-phishing attacks...