CentOS 7 : firefox (RHSA-2023:4079)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:4079 advisory. - An attacker could have triggered a use-after-free condition when creating a WebRTC connection over HTTPS. This vulnerability affects Firefox 115,...

CVE-2023-6974

CVE-2023-6974 is a server-side request forgery (SSRF) affecting MLflow. The connected documents describe an issue where a malicious user can abuse redirects during artifact fetching to access internal HTTP(S) servers and, in the worst case, achieve remote code execution on the victim machine. The...

The vulnerability of the FortiWAN traffic balancing system, related to deficiencies in authentication procedures, allows attackers to increase their privileges.

The vulnerability of the FortiWAN traffic balancing system is related to deficiencies in authentication procedures due to the use of a static key during the processing of JWT tokens. Exploiting this vulnerability allows an attacker to enhance their privileges by sending specially crafted HTTP and...

CVE-2023-50266

Bazarr manages and downloads subtitles. In version 1.2.4, the proxy method in bazarr/bazarr/app/ui.py does not validate the user-controlled protocol and url variables and passes them to requests.get without any sanitization, which leads to a blind server-side request forgery SSRF. This issue allo...

Server side request forgery (ssrf)

Bazarr manages and downloads subtitles. In version 1.2.4, the proxy method in bazarr/bazarr/app/ui.py does not validate the user-controlled protocol and url variables and passes them to requests.get without any sanitization, which leads to a blind server-side request forgery SSRF. This issue allo...

CVE-2023-50266 Bazarr Blind Server-Side Request Forgery (SSRF) in the /test/<protocol>/ endpoint

Bazarr manages and downloads subtitles. In version 1.2.4, the proxy method in bazarr/bazarr/app/ui.py does not validate the user-controlled protocol and url variables and passes them to requests.get without any sanitization, which leads to a blind server-side request forgery SSRF. This issue allo...

SUSE SLES15 Security Update : squid (SUSE-SU-2023:4825-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4825-1 advisory. - Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a...

Amazon Linux 2023 : squid (ALAS2023-2023-445)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-445 advisory. 2024-02-29: CVE-2024-25617 was added to this advisory. 2024-02-29: CVE-2023-49285 was removed from this advisory. 2024-02-29: The severity of this advisory has been changed from important to...

How to Analyze Malware's Network Traffic in A Sandbox

Malware analysis encompasses a broad range of activities, including examining the malware's network traffic. To be effective at it, it's crucial to understand the common challenges and how to overcome them. Here are three prevalent issues you may encounter and the tools you'll need to address the...

CVE-2023-44251

UNSUPPORTED WHEN ASSIGNED A improper limitation of a pathname to a restricted directory 'path traversal' vulnerability CWE-22 in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1. through 5.1.2 may allow an authenticated attacker to read and delete arbitrary file of the system via...

CVE-2023-44252

UNSUPPORTED WHEN ASSIGNED An improper authentication vulnerability CWE-287 in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1 through 5.1.2 may allow an authenticated attacker to escalate his privileges via HTTP or HTTPs requests with crafted JWT token values...

Path traversal

UNSUPPORTED WHEN ASSIGNED A improper limitation of a pathname to a restricted directory 'path traversal' vulnerability CWE-22 in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1. through 5.1.2 may allow an authenticated attacker to read and delete arbitrary file of the system via...

Authentication flaw

UNSUPPORTED WHEN ASSIGNED An improper authentication vulnerability CWE-287 in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1 through 5.1.2 may allow an authenticated attacker to escalate his privileges via HTTP or HTTPs requests with crafted JWT token values...

CVE-2023-44252

Fortinet FortiWAN is affected by an improper authentication vulnerability (CWE-287) in versions 5.1.1–5.1.2 and 5.2.0–5.2.1. The issue arises from using a static key when handling JWT tokens, enabling an authenticated attacker to escalate privileges by sending crafted HTTP/HTTPS requests. Impact ...

CVE-2023-44251

UNSUPPORTED WHEN ASSIGNED A improper limitation of a pathname to a restricted directory 'path traversal' vulnerability CWE-22 in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1. through 5.1.2 may allow an authenticated attacker to read and delete arbitrary file of the system via...

CVE-2023-44251

FortiWAN path traversal vulnerability (CVE-2023-44251) affects Fortinet FortiWAN versions 5.1.1–5.1.2 and 5.2.0–5.2.1. The issue is an improper limitation of a pathname to a restricted directory, enabling an authenticated attacker to read and delete arbitrary files via crafted HTTP/HTTPS requests...

CVE-2023-41673

An improper authorization vulnerability CWE-285 in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests...

Authorization

An improper authorization vulnerability CWE-285 in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests...

CVE-2023-41673

Fortinet FortiADC is affected by an improper authorization vulnerability (CWE-285) that could allow a low-privileged user to read or back up the full system configuration via HTTP(S) requests. Affected products and versions in the provided documents include FortiADC versions 7.4.0 and earlier, wi...

CVE-2023-41337

h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. In version 2.3.0-beta2 and prior, when h2o is configured to listen to multiple addresses or ports with each of them using different backend servers managed by multiple entities, a malicious backend entity that also has the...