PYSEC-2020-220

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

CVE-2020-25635

A flaw was found in Ansible Base when using the awsssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality...

kernel: memory leak in ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c

A flaw was found in the AMD Cryptographic Co-processor driver in the Linux kernel. An attacker, able to send invalid SHA type commands, could cause the system to crash. The highest threat from this vulnerability is to system availability...

Improper access control

A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being placed into RUN state. The vulnerability is due to an incomplete access control list ACL being...

Mitsubishi PLC FX3U-32M suffers from a denial of service vulnerability (CNVD-2020-58825)

The FX3U series Mitsubishi PLC is the third generation of miniature programmable controllers. A denial of service vulnerability exists in the Mitsubishi PLC FX3U-32M, which can be exploited by an attacker to cause the device RUN light to go out and the output module to stop working...

Microsoft Spooler Local Privilege Elevation Vulnerability

This exploit leverages a file write vulnerability in the print spooler service which will restart if stopped. Because the service cannot be stopped long enough to remove the dll, there is no way to remove the dll once it is loaded by the service. Essentially, on default settings, this module adds...

CVE-2020-24753

A memory corruption vulnerability in Objective Open CBOR Run-time oocborrt in versions before 2020-08-12 could allow an attacker to execute code via crafted Concise Binary Object Representation CBOR input to the cbor2json decoder. An uncaught error while decoding CBOR Major Type 3 text strings...

CVE-2020-24753

A memory corruption vulnerability in Objective Open CBOR Run-time oocborrt in versions before 2020-08-12 could allow an attacker to execute code via crafted Concise Binary Object Representation CBOR input to the cbor2json decoder. An uncaught error while decoding CBOR Major Type 3 text strings...

CVE-2020-24753

A memory corruption vulnerability in Objective Open CBOR Run-time oocborrt in versions before 2020-08-12 could allow an attacker to execute code via crafted Concise Binary Object Representation CBOR input to the cbor2json decoder. An uncaught error while decoding CBOR Major Type 3 text strings...

CVE-2020-1575

A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...

Spyre - Simple YARA-based IOC Scanner

...a simple, self-contained modular host-based IOC scanner Spyre is a simple host-based IOC scanner built around the YARA pattern matching engine and other scan modules. The main goal of this project is easy operationalization of YARA rules and other indicators of compromise. Users need to bring...

CVE-2020-6361

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated RLE files received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

Siemens License Management Utility (LMU) Elevation of Privilege Vulnerability

License Management Utility LMU is a unified license management system for Siemens Building Automation products such as Desigo CC and ABT. An elevation of privilege vulnerability exists in Siemens License Management Utility LMU. This allows a locally authenticated attacker to execute arbitrary...

Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2020)

This host is missing an important security update according to Microsoft Office Click-to-Run updates. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

VulnCheck KEV: CVE-2020-25213

WordPress File Manager plugin contains a remote code execution vulnerability that allows unauthenticated users to execute PHP code and upload malicious files on a target site...

http-run (=0.0.1) potentially affected by unknown CVE via requet (=0.0.1-security)

requet NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on requet and may be impacted: - http-run =0.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-H44F-769Q-J6PX...

GHSA-P33Q-W45H-2HCJ Malicious Package in 4equest

All versions of 4equest typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the process w...

PT-2020-15464 · Jenkins · Jenkins Cadence Vmanager Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Cadence vManager Plugin versions 3.0.4 and earlier Description: The issue is related to a stored cross-site scripting XSS vulnerability. This occurs because build descriptions in tooltips are not properly escaped, allowing attackers...

The vulnerability of the Click-to-Run components of Microsoft Office and Office 365, related to memory object processing errors, allows attackers to escalate their privileges.

The vulnerability of the Click-to-Run components of Microsoft Office and Office 365 is related to errors in memory object handling. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges using a specially crafted file...

ASX To MP3 Converter 3.1.3.7.2010.11.05 Buffer Overflow

Exploit Title: ASX to MP3 converter 3.1.3.7.2010.11.05 - '.wax' Local Buffer Overflow DEP,ASLR Bypass PoC Software Link Download: https://github.com/x00x00x00x00/ASXtoMP3Converter3.1.3.7.2010.11.05/blob/master/ASXtoMP3Converter3.1.3.7.2010.11.05.exe?raw=true Exploit Author: Paras Bhatia Discovery...