Researchers Warn of High-Severity Dell PowerEdge Server Flaw

Researchers have disclosed details of a recently patched, high-severity Dell PowerEdge server flaw, which if exploited could allow an attacker to fully take over and control server operations. The web vulnerability was found in the Dell EMC iDRAC remote access controller, technology embedded with...

Amazon Linux AMI : transmission (ALAS-2020-1399)

The version of transmission installed on the remote host is prior to 3.00-1.1. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1399 advisory. Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service...

MGASA-2020-0284 Updated mariadb packages fix security vulnerability

Updated mariadb packages fix security vulnerabilities: Vulnerability in the MariaDB Client product of MariaDB component: C API Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Client. Successful attacks of this...

CVE-2020-1301 Windows SMB Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests, aka ‘Windows SMB Remote Code Execution Vulnerability’. Recent assessments: gwillcox-r7 at June 10, 2020 12:14am UTC reported: To add to @busterb’s assessment,...

Cisco IOS XE Software Web UI Command Injection (cisco-sa-web-cmdinj3-44st5CcA)

According to its self-reported version, Cisco IOS XE Software is affected by a vulnerability. Please see the included Cisco BID and Cisco Security Advisory for more information. TRUSTED...

Debian DSA-4696-1 : nodejs - security update

Two vulnerabilities were discovered in Node.js, which could result in denial of service and potentially the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4696. The text itself i...

Cisco Firepower Management Center File Overwrite (cisco-sa-fmcai-z5dQObVN)

File overwrite vulnerability exist in the web UI of Cisco Firepower Management Center due to insufficient input validation. An authenticated, remote attacker can exploit this by sending crafted input to the web UI in order to overwrite files on the file system of the affected device. Please see t...

Default configuration

iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors such as C library...

CVE-2019-20795

iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors such as C library...

CVE-2019-20795

CVE-2019-20795 affects iproute2 up to version 5.0.x, with a use-after-free in get_netnsid_from_name() (ip/ipnetns.c). The issue is triggered in the net namespace handling and is the likely root cause of a local-use-after-free condition. The CVE describes the vulnerability as a use-after-free in g...

CVE-2019-20795

iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors such as C library...

CVE-2019-20795

iproute2 before 5.1.0 has a use-after-free in getnetnsidfromname in ip/ipnetns.c. NOTE: security relevance may be limited to certain uses of setuid that, although not a default, are sometimes a configuration option offered to end users. Even when setuid is used, other factors such as C library...

CVE-2020-8982

An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or inside Citrix Cloud...

Remote code execution

An arbitrary file write issue exists in all versions of Citrix ShareFile StorageZones aka storage zones Controller, including the most recent 5.10.x releases as of May 2020, which allows remote code execution. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or...

CVE-2020-8983

CVE-2020-8983 describes an arbitrary file write vulnerability in all versions of Citrix ShareFile StorageZones Controller, enabling remote code execution and broad file access in hosted ShareFile environments. Exploitation depends on the storage zone creation version (5.9.0, 5.8.0, 5.7.0, 5.6.0, ...

CVE-2020-8982

Summary: CVE-2020-8982 affects Citrix ShareFile StorageZones (Controller) versions through at least 5.10.x. It constitutes an unauthenticated arbitrary file read that can grant access to files stored in ShareFile or Citrix Cloud deployments. The issue’s exploitability depends on the storage zone ...

CVE-2020-7473

CVE-2020-7473 refers to unauthenticated access to documents/folders in Citrix ShareFile StorageZones Controller. According to the description, exploitability depends on the product version used when the storage zone was created, not the version at assessment time. The vulnerability can be trigger...

Photon OS 3.0: Ansible PHSA-2020-3.0-0078

An update of the ansible package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0078. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135779;...

Nextcloud: Code injection possible with malformed Nextcloud Talk chat commands

Summary The Nextcloud Talk app allows system administrators to setup chat commands that can be executed in Talk using the "/command" syntax. Users can provide additional arguments to the commands, such as "/calc 1+1" or "/wiki Hello", which are passed to the underlying script using @exec. If...

Photon OS 3.0: Linux PHSA-2020-3.0-0073

An update of the linux package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0073. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135403;...