Gogs: DOM-based XSS via milestone selection

Summary It was confirmed in a test environment that an attacker can store an HTML/JavaScript payload in a repository’s Milestone name, and when another user selects that Milestone on the New Issue page /issues/new, a DOM-Based XSS is triggered. Impact Theft of information accessible in the victim...

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally...

Understanding the New Windows Secure Kernel Mode Elevation of Privilege Vulnerability (CVE-2024-21302)

On August 7, 2024, Microsoft disclosed a significant security vulnerability affecting Windows-based systems, known as CVE-2024-21302. This zero-day vulnerability allows attackers with administrator privileges to elevate their access by replacing current versions of Windows system files with...

PUB-A-189986136

In tgmdmattinit of tt.c, there is a possible kernel memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Microsoft Windows: Audit Sensitive Privilege Use

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winsensitiveprivilegeuse.nasl 11068 2018-08-21 11:51:41Z emoss $ Check value for Audit Sensitive Privilege Use Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program i...

RHEL 6 : java-1.8.0-ibm (RHSA-2017:3267)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3267 advisory. - lcms2: Out-of-bounds read in TypeMLURead CVE-2016-10165 - OpenJDK: multiple unbounded memory allocations in deserialization Serialization,...