Astra Linux - уязвимость в zabbix

The implementation of atob in "Zabbix JS" allows for creating a string with arbitrary content and using it to access internal properties of objects...

CVE-2024-36463

The implementation of atob in "Zabbix JS" allows to create a string with arbitrary content and use it to access internal properties of objects...

DEBIAN-CVE-2024-36463

The implementation of atob in "Zabbix JS" allows to create a string with arbitrary content and use it to access internal properties of objects...

CVE-2024-36463

The implementation of atob in "Zabbix JS" allows to create a string with arbitrary content and use it to access internal properties of objects...

Improper Input Validation

parse-server is vulnerable to Improper Input Validation. The vulnerability is due to insufficient string sanitation for Cloud Function or Cloud Job names, which allows an attacker to crash the server, manipulate internal object storage, or potentially execute arbitrary code...

Apache Tomcat Security Vulnerability

Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server . It is used to implement support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat, which originates from a security hole when recycling internal objects,...

Apache Tomcat Security Vulnerability

Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server . Used to implement support for Servlet and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat, which stems from a security hole when recycling internal objects, leading to the...

Cesanta MJS 安全漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS, which originated in Cesanta MJS...

Google Chrome / Chromium 'ReadableStream' Type Obfuscation Vulnerability

Chromium is a web browser led by Google.GoogleChrome is a simple and convenient web browsing tool developed by Google. Google Chrome / Chromium 'ReadableStream' type obfuscation vulnerability can be exploited by attackers to cause 'ReadableStream' internal object disclosure...

Google Chrome 73.0.3683.39 Chromium 74.0.3712.0 - ReadableStream Internal Object Leak Type Confusion

Google Chrome 73.0.3683.39 Chromium 74.0.3712.0 - ReadableStream Internal Object Leak Type Confusion binding // These values are only used when serialization is enabled. if !RuntimeEnabledFeatures::TransferableStreamsEnabled return; v8::Local global = scriptstate-GetContext-Global; v8::Local...

OrbiTeam BSCW 5.0.7 Metadata Information Disclosure Vulnerability

RedTeam Pentesting discovered an information disclosure vulnerability in OrbiTeam's BSCW collaboration software. An unauthenticated attacker can disclose metadata about internal objects which are stored in BSCW. Versions 5.0.7 and below are affected. RedTeam Pentesting discovered an information...

Design/Logic Flaw

The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript in mail, and SeaMonkey before 1.0 exposes the internal "AnyName" object to external interfaces, which allows multiple cooperating domains to exchange information in violation of the same origin...