CVE-2023-3286

CVE-2023-3286 affects Easy!Appointments prior to version 1.5.0. The vulnerability is described as a BOLA issue on POST /secretaries that allows a low-privileged user to create another low-privileged secretary account, enabling unauthorized data manipulation. The connected sources consistently fra...

CVE-2023-3287

Vulnerability details (CVE-2023-3287): Easy!Appointments

CVE-2023-3285

CVE-2023-3285 refers to an Insecure Authorization (BOLA) in the EasyAppointments web app. The vulnerability resides in the POST /appointments endpoint, where a low-privileged user can create an appointment for any user (including administrators), leading to unauthorized data manipulation. Technic...

Authentication Bypass

modproxy in Apache HTTP Server is vulnerable to Authentication Bypass. The vulnerability is caused due to encoding problem. This allows request URLs with incorrect encoding to be sent to backend services, potentially bypassing authentication via crafted requests...

PT-2024-5132 · Zoom · Zoom Workplace Apps +1

Name of the Vulnerable Software and Affected Versions: Zoom Workplace Apps and SDKs for Windows affected versions not specified Description: The issue is related to improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows. This may allow an authenticated us...

CVE-2023-50806

CVE-2023-50806 affects Samsung Mobile Processor, Wearable Processor, and Modems (Exynos 9820/9825/980/990/850/1080/2100/2200/1280/1380/1330/9110/W920/W930, Exynos Modem 5123, 5300). Description: an out-of-bounds heap-buffer access in the SIM Proactive Command. Impact and likelihood: CVSSv3.1 base...

CVE-2023-50807

CVE-2023-50807 concerns Samsung Wearable Processor and Modems (Exynos 9110; Exynos Modem 5123; Exynos Modem 5300). The issue is an out-of-bounds write on the heap in 2G, exploitable with no authentication. Multiple connected sources (NVD, Red Hat, CVE list, CNNVD, OSV) corroborate the same descri...

GHSA-564J-V29W-RQR6 Khoj Open Redirect Vulnerability in Login Page

Summary An attacker can use the next parameter on the login page to redirect a victim to a malicious page, while masking this using a legit-looking app.khoj.dev url. For example, https://app.khoj.dev/login?next=//example.com will redirect to the https://example.com page. Details The problem seems...

Teams 2.1 Start Menu shortcut not working

Teams 2.x Start menu shortcut does not work. It is visible but the icon is missing and clicking it does not launch Teams...

CVE-2024-3651

A vulnerability was identified in the kjd/idna library, specifically within the idna.encode function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This...

CVE-2024-36041

The CVE-2024-36041 issue affects KDE Plasma Workspace (plasma-workspace) prior to 5.27.11.1 and 6.x prior to 6.0.5.1, where KSmserver incorrectly accepts ICE connections from localhost, allowing a local attacker to gain access to the session manager and potentially execute code on the victim at t...

Internet Bug Bounty: moderate: Apache HTTP Server proxy encoding problem (CVE-2024-38473)

Moderate: Apache HTTP Server proxy encoding problem CVE-2024-38473 An encoding problem was discovered in modproxy in Apache HTTP Server versions 2.4.59 and earlier. This issue allowed request URLs with incorrect encoding to be sent to backend services, potentially bypassing authentication via...

Windows Screen Saver may not produce desired animation or image in ICA desktop session

Windows Screen Saver e.g. C:\Windows\System32\ssText3d.scr may not be able to produce the desired animation when it is initiated in ICA desktop session. Instead, a white or black screen could be presented...

CVE-2024-33869

Artifex Ghostscript

CVE-2024-33870

CVE-2024-33870 affects Artifex Ghostscript up to version 10.03.1. The issue is a path traversal vulnerability in PostScript handling that can reach arbitrary files when the current directory is within permitted paths, e.g., transforming ../../foo to ./../../foo and gaining access if ./ is allowed...

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

CBL Mariner 2.0 Security Update: azure-iot-sdk-c (CVE-2024-27099)

The version of azure-iot-sdk-c installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27099 advisory. - The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an...

CVE-2024-33871

CVE-2024-33871 affects Artifex Ghostscript prior to 10.03.1. The issue is in contrib/opvp/gdevopvp.c where the Driver parameter for opvp (and oprp) devices can specify an arbitrary dynamic library name, which is then loaded when processing a crafted PostScript document. This allows arbitrary code...

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...