Siemens SCALANCE Series 安全特征问题漏洞

The SCALANCE X-204RNA Industrial Ethernet Access Point enables non-PRP endpoint devices to connect to a separate parallel network as needed.A security vulnerability exists in Siemens SCALANCE X-200RNA Switch Devices due to the web server of the affected device calculating session IDs and random...

Fedora: Security Advisory for python-joblib (FEDORA-2022-c83ce1c000)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 37 Update: python-joblib-1.2.0-1.fc37

Joblib is a set of tools to provide lightweight pipelining in Python. In particular, joblib offers: transparent disk-caching of the output values and lazy re-evaluation memorize pattern easy simple parallel computing logging and tracing of the execution...

GLSA-202210-24 : FreeRDP: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202210-24 FreeRDP: Multiple Vulnerabilities - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections /gt:rpc fai...

OESA-2022-2018 freerdp security update

FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp and wlfreerdp. Security Fixes: FreeRDP is a free remote desktop protocol library and clients. All FreeRDP based clients when...

The vulnerability of the RDP client FreeRDP, related to the use of an uninitialized resource, allows a hacker to gain access to read, modify, or delete data.

The vulnerability of the RDP client FreeRDP relates to the use of an uninitialized resource during the processing of the /parallel command-line parameter. Exploiting this vulnerability can allow a remote attacker to gain read, modify, or delete access to data...

Sensitive Information Disclosure

libfreerdp.so is vulnerable to Sensitive Information Disclosure. The vulnerability is due to uninitialized data being sent to the server the client is currently connected to when using /parallel command line switch, which in specific conditions may result in sensitive information disclosure...

OESA-2022-1990 python-joblib security update

Joblib is a set of tools to provide lightweight pipelining in Python. Security Fixes: The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the predispatch flag in Parallel class due to the eval statement.CVE-2022-21797...

CVE-2022-39282

A vulnerability was found in FreeRDP where clients on UNIX systems using /parallel command line switch might read uninitialized data and send it to the client's server. The vulnerability allows a remote attacker to gain access to sensitive information. Mitigation Workaround: Do not use parallel...

DEBIAN-CVE-2022-39282

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

Double free

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

UBUNTU-CVE-2022-39282

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

FreeRDP 安全漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. A security vulnerability exists in FreeRDP versions prior to 2.8.1, which stems from the fact that a FreeRDP-based client on a unix system using the /parallel command line switch may read...

CVE-2022-39282 RDP client: Read of uninitialized memory with parallel port redirection

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

PT-2022-5111 · Freerdp +9 · Freerdp +9

Name of the Vulnerable Software and Affected Versions: FreeRDP versions prior to 2.8.1 Description: The issue is related to the use of uninitialized data when processing the /parallel command line switch in FreeRDP based clients on Unix systems. This could allow a remote attacker to read, modify,...

CVE-2022-39282 RDP client: Read of uninitialized memory with parallel port redirection

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

CVE-2022-39282 RDP client: Read of uninitialized memory with parallel port redirection

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. FreeRDP based server implementations are not affected. Please...

[SECURITY] Fedora 36 Update: python-joblib-1.2.0-1.fc36

Joblib is a set of tools to provide lightweight pipelining in Python. In particular, joblib offers: transparent disk-caching of the output values and lazy re-evaluation memorize pattern easy simple parallel computing logging and tracing of the execution...

parallel-schallplatten.de Cross Site Scripting vulnerability OBB-2961776

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

DEBIAN-CVE-2022-21797

The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the predispatch flag in Parallel class due to the eval statement...