[SECURITY] Fedora 39 Update: python-geopandas-0.14.1-1.fc39

GeoPandas is a project to add support for geographic data to Pandas objects. The goal of GeoPandas is to make working with geospatial data in Python easie r. It combines the capabilities of Pandas and Shapely, providing geospatial operations in Pandas and a high-level interface to multiple...

[SECURITY] Fedora 38 Update: python-geopandas-0.14.1-1.fc38

GeoPandas is a project to add support for geographic data to Pandas objects. The goal of GeoPandas is to make working with geospatial data in Python easie r. It combines the capabilities of Pandas and Shapely, providing geospatial operations in Pandas and a high-level interface to multiple...

Debian: Security Advisory (DLA-3672-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3672-1] postgresql-multicorn PEP440 update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3672-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 28, 2023 https://wiki.debian.org/LTS -...

Exploit for CVE-2022-30190

AmzWord an automated attack chain based on CVE-2022-30190, 16...

Ubuntu: Security Advisory (USN-6513-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MaccaroniC2 - A PoC Command And Control Framework That Utilizes The Powerful AsyncSSH

MaccaroniC2 is a proof-of-concept Command and Control framework that utilizes the powerful AsyncSSH Python library which provides an asynchronous client and server implementation of the SSHv2 protocol and use PyNgrok wrapper for ngrok integration. This tool is inspired for a specific scenario whe...

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Python vulnerability (USN-6513-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6513-2 advisory. USN-6513-1 fixed vulnerabilities in Python. This update provides the corresponding updates for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu...

Debian: Security Advisory (DLA-3666-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3666-1] reportbug PEP440 version update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3666-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 26, 2023 https://wiki.debian.org/LTS -...

Ubuntu: Security Advisory (USN-6513-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6513-1: Python vulnerabilities

It was discovered that Python incorrectly handled certain plist files. If a user or an automated system were tricked into processing a specially crafted plist file, an attacker could possibly use this issue to consume resources, resulting in a denial of service. CVE-2022-48564 It was discovered...

ICS-Forensics-Tools - Microsoft ICS Forensics Framework

Microsoft ICS Forensics Tools is an open source forensic framework for analyzing Industrial PLC metadata and project files. it enables investigators to identify suspicious artifacts on ICS environment for detection of compromised devices during incident response or manual check. open source...

Ubuntu 16.04 ESM / 18.04 ESM : Python vulnerabilities (USN-6513-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6513-1 advisory. It was discovered that Python incorrectly handled certain plist files. If a user or an automated system were tricked into processing a...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Owncloud Graph_Api

CVE-2023-49103 PoC for the CVE-2023-49103 Overview This Py...

CVE-2023-48699

fastbots is a library for fast bot and scraper development using selenium and the Page Object Model POM design. Prior to version 0.1.5, an attacker could modify the locators.ini locator file with python code that without proper validation it's executed and it could lead to rce. The vulnerability ...

CVE-2023-48699

Summary: CVE-2023-48699 corresponds to the fastbots vulnerability prior to 0.1.5 where the locators.ini file is loaded and evaluated without proper validation in page.py (def locator (self, locator_name: str)). This can allow an attacker to inject Python code and trigger remote code execution (RC...

CureIAM - Clean Accounts Over Permissions In GCP Infra At Scale

Clean up of over permissioned IAM accounts on GCP infra in an automated way CureIAM is an easy-to-use, reliable, and performant engine for Least Privilege Principle Enforcement on GCP cloud infra. It enables DevOps and Security team to quickly clean up accounts in GCP infra that have granted...

Oracle Linux 8 : python-cryptography (ELSA-2023-7096)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-7096 advisory. 3.2.1-6 - Fix CVE-2023-23931: Don't allow updateinto to mutate immutable objects, resolves rhbz2172404 Tenable has extracted the preceding description block...

RHEL 9 : fence-agents (RHSA-2023:7378)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7378 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or...