EUVD-2024-27017

Malicious code in bioql PyPI...

EUVD-2024-37321

Malicious code in bioql PyPI...

CVE-2024-22045

A vulnerability has been identified in SINEMA Remote Connect Client All versions V3.1 SP1. The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information. This information is also...

Privilege Escalation

qemu-kvm is vulnerable to privilege escalation. It was found that qemu-kvm did not properly drop supplemental group privileges when the root user started guests from the command line "/usr/libexec/qemu-kvm" with the "-runas" option. A qemu-kvm process started this way could use this flaw to gain...

Xxe

Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via progid field...

Siemens SICAM PAS Vulnerabilities

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-16-336-01 Siemens SICAM PAS Vulnerabilities that was published December 1, 2016, on the NCCIC/ICS-CERT web site. Siemens has released an advisory to inform its users on how to mitigate vulnerabilities that affect...