76 matches found
CVE-2022-41964 BigBlueButton contains Response leaks in anonymous polls
BigBlueButton is an open source web conferencing system. This vulnerability only affects release candidates of BigBlueButton 2.4. The attacker can start a subscription for poll results before starting an anonymous poll, and use this subscription to see individual responses in the anonymous poll...
Samsung sdp driver 资源管理错误漏洞
Samsung sdp driver is a driver for a digital presenter from Samsung South Korea. A security vulnerability exists in Samsung sdp driver that can cause a kernel crash...
openslides-presenter (=2.0.3), openslides-protocol (=1.0.0) +2 more potentially affected by CVE-2020-26280 via openslides (>=2.1.1 <=2.2.0)
openslides PYPI version =2.1.1, =2.0.1, =2.0.2 Source cves: CVE-2020-26280 Source advisory: OSV:PYSEC-2020-72...
BlueHat Seattle videos are online!
Were you unable to attend BlueHat Seattle, or wanted to see a session again? We have good news. If you have been waiting for the videos from BlueHat Seattle last month, the wait is over. All videos which the presenter authorized to be recorded are now online and available to anyone...
CVE-2019-12506
Due to unencrypted and unauthenticated data communication, the wireless presenter Logitech R700 Laser Presentation Remote R-R0010 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target...
CVE-2019-12504
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP2002 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In this wa...
CVE-2019-12505
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP1001 v1.3C is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In...
CVE-2019-12505
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP1001 v1.3C is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In...
Design/Logic Flaw
Due to unencrypted and unauthenticated data communication, the wireless presenter Inateck WP1001 v1.3C is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target system is unattended. In...
CVE-2019-12506
Due to unencrypted and unauthenticated data communication, the wireless presenter Logitech R700 Laser Presentation Remote R-R0010 is prone to keystroke injection attacks. Thus, an attacker is able to send arbitrary keystrokes to a victim's computer system, e.g., to install malware when the target...
CVE-2019-12506
CVE-2019-12506 affects the Logitech R700 Laser Presentation Remote R-R0010. The vulnerability arises from unencrypted and unauthenticated wireless communication, enabling keystroke injection and allowing an attacker to send arbitrary keystrokes to a victim’s computer when the receiver is in range...
CVE-2019-12504
CVE-2019-12504 concerns the Inateck WP2002 2.4 GHz wearable wireless presenter. The connected documents confirm a vulnerability in data authenticity (CWE-345) where data from the receiver is not adequately validated, enabling keystroke injection attacks. The description notes unencrypted and unau...
CVE-2019-12505
CVE-2019-12505 affects Inateck WP1001 wireless presenter (Rev. v1.3C). The issue arises from unencrypted and unauthenticated data communication over the 2.4 GHz link, enabling a remote attacker to perform keystroke injection and send arbitrary keystrokes to a victim’s computer when the target is ...
Inateck 2.4 GHz Wireless Presenter WP1001 Keystroke Injection Vulnerability
Product: 2.4 GHz Wireless Presenter WP1001 Manufacturer: Inateck Affected Versions: Rev. v1.3C Tested Versions: Rev. v1.3C Vulnerability Type: Insufficient Verification of Data Authenticity CWE-345 Keystroke Injection Vulnerability Risk Level: High Solution Status: Open Manufacturer Notification:...
Logitech R700 Laser Presentation Remote Keystroke Injection Vulnerability
Product: R700 Laser Presentation Remote Manufacturer: Logitech Affected Versions: Model R-R0010 PID WD904XM and PID WD802XM Tested Versions: Model R-R0010 PID WD904XM and PID WD802XM Vulnerability Type: Insufficient Verification of Data Authenticity CWE-345 Keystroke Injection Vulnerability Risk...
CVE-2019-9581
phpscheduleit Booked Scheduler 2.7.5 allows arbitrary file upload via the Favicon field, leading to execution of arbitrary Web/custom-favicon.php PHP code, because Presenters/Admin/ManageThemePresenter.php does not ensure an image file extension...
Quarterly SPM Support Bulletin 2015 Q4
Question Quarterly SPM Support Bulletin 2015 Q4 Answer SPM Support Bulletin ICM 9.0.2 Released ICM 9.0.2 has been released. You can find the release documentation here. Highlights include; setting scheduler properties per process allowing more flexible on error handling, new charts in Presenter...
CVE-2018-9101
A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 21.84.5535.0 and earlier, and Mitel ST 14.2, versions GA27 19.49.5200.0 and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient...
DisplayLink Presenter - Native code usage, Suspicious files, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application DisplayLink Presenter published at the 'play' market has multiple vulnerabilities...
Adobe Presenter Installed
Adobe Presenter, a video production / editing application, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62691; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/01/31";...