335 matches found
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Remote Root
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit Vendor: Microhard Systems Inc. Product web page: http://www.microhardcorp.com Affected version: IPn4G 1.1.0 build 1098 IPn3Gb 2.2.0 build 2160 IPn4Gb 1.1.6 build 1184-14 IPn4Gb 1.1.0 Rev 2 build 1090-2 IPn4Gb 1.1.0 R...
July 10, 2018—KB4338815 (Monthly Rollup)
July 10, 2018—KB4338815 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4284863 released June 21, 2018 and addresses the following issues: Provides protections from an additional subclass of speculative execution side-channel...
Description of the security update for SharePoint Enterprise Server 2013: May 8, 2018
Description of the security update for SharePoint Enterprise Server 2013: May 8, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see th...
OPENSUSE-SU-2018:1056-1 Security update for hdf5
This update for hdf5 fixes the following issues: - fix security issues arbitary code execution: CVE-2016-4330: H5TARRAY Code Execution boo1011201 CVE-2016-4331: H5ZNBIT Code Execution boo1011204 CVE-2016-4332: Shareable Message Type Code Execution boo1011205 CVE-2016-4333: Array index bounds issu...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.2 - x86: Add another set of MSR accessor functions Borislav Petkov Orabug: 27444923 CVE-2017-5753 - userns: prevent speculative execution Elena Reshetova Orabug: 27444923 CVE-2017-5753 - udf: prevent speculative execution Elena Reshetova Orabug: 27444923 CVE-2017-5753 - f...
Meltdown and Spectre fallout: patching problems persist
Last week, the disclosure by multiple teams from Graz and Pennsylvania University, Rambus, Data61, Cyberus Technology, and Google Project Zero of vulnerabilities under the aliases Meltdown and Spectre rocked the security world, sending vendors scurrying to create patches, if at all possible, and...
Virtuozzo 7 : crit / criu / criu-devel / ksm-vz / libcompel / etc (VZA-2018-003)
According to the versions of the crit / criu / criu-devel / ksm-vz / libcompel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies ...
EulerOS 2.0 SP2 : kernel (EulerOS-SA-2018-1001)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The recent speculative execution CVEs address three potential attacks across a wide variety of architectures and hardware platforms. - Note: Thi...
SUSE-SU-2017:2381-1 Security update for gdk-pixbuf
This update for gdk-pixbuf fixes the following issues: - CVE-2017-2862: JPEG gdkpixbufjpegimageloadincrement Code Execution Vulnerability bsc1048289 - CVE-2017-2870: tiffimageparse Code Execution Vulnerability bsc1048544 - CVE-2017-6313: A dangerous integer underflow in io-icns.c bsc1027024 -...
MGASA-2017-0200 Updated bitlbee packages fix security vulnerability
It was discovered that bitlbee contained issues that allowed a remote attacker to cause a denial of service via application crash, or potentially execute arbitrary commands CVE-2016-10188, CVE-2016-10189...
KPN Interactieve TV - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application KPN Interactieve TV published at the 'play' market has multiple vulnerabilities...
Via Verde - BSD license, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Via Verde published at the 'play' market has multiple vulnerabilities...
VC Browser - Download Faster - Dangerous filesystem permissions, WebView SSL handling enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application VC Browser - Download Faster published at the 'play' market has multiple vulnerabilities...
Audi Konfigurator Deutschland - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Audi Konfigurator Deutschland published at the 'play' market has multiple vulnerabilities...
SUSE-SU-2017:0523-1 Security update for flash-player
The Adobe flash-player was updated to 24.0.0.221 to fix the following issues: Security update to 24.0.0.221 bsc1025258, fixing the following vulnerabilities advised under APSB17-04: type confusion vulnerability that could lead to code execution CVE-2017-2995. integer overflow vulnerability that...
운수도원 -무료운세,토정비결,신년운세,사주,손금,관상 - Dangerous filesystem permissions, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application 운수도원 -무료운세,토정비결,신년운세,사주,손금,관상 published at the 'play' market has multiple vulnerabilities...
Ameria Mobile Banking - BSD license, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Ameria Mobile Banking published at the 'play' market has multiple vulnerabilities...
Follower - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Follower published at the 'play' market has multiple vulnerabilities...
Chigue - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Chigue published at the 'play' market has multiple vulnerabilities...
POSB digibank SG - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application POSB digibank SG published at the 'play' market has multiple vulnerabilities...