Use-after-free

Firefox is vulnerable to a potential use-after-free crash. The vulnerability is due to certain font styles when saving a page to PDF, which can cause a use-after-free condition. Attackers can exploit this vulnerability to execute arbitrary code or crash the application...

Mozilla: Use-after-free could occur when printing to PDF

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When saving a page to PDF, certain font styles could have led to a potential use-after-free crash...

Mozilla: Use-after-free could occur when printing to PDF

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When saving a page to PDF, certain font styles could have led to a potential use-after-free crash...

Mozilla: Use-after-free could occur when printing to PDF

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: When saving a page to PDF, certain font styles could have led to a potential use-after-free crash...

DEBIAN-CVE-2024-4770

When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

UBUNTU-CVE-2024-4770

When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11...

Mozilla Firefox < 126.0

The version of Firefox installed on the remote Windows host is prior to 126.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-21 advisory. - Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10. Some of these bugs showed...

Exploit for Improper Input Validation in Paloaltonetworks Pan-Os

CVE-2024-3400-pot Simple honeypot for CVE-2024-3400 Palo Alto...

GHSA-HVP5-5X4F-33FQ JADX file override vulnerability

Summary when jadx parses a resource file, there is an escape problem with the style file, which can overwrite other files in the directory when saving the decompile result. Although I don't think this vulnerability realizes path traversal in the true sense of the word , I reported it anyway Detai...

CVE-2024-30190

A vulnerability has been identified in SCALANCE W1748-1 M12 6GK5748-1GY01-0AA0, SCALANCE W1748-1 M12 6GK5748-1GY01-0TA0, SCALANCE W1788-1 M12 6GK5788-1GY01-0AA0, SCALANCE W1788-2 EEC M12 6GK5788-2GY01-0TA0, SCALANCE W1788-2 M12 6GK5788-2GY01-0AA0, SCALANCE W1788-2IA M12 6GK5788-2HY01-0AA0, SCALAN...

CVE-2024-30190

A vulnerability has been identified in SCALANCE W1748-1 M12 6GK5748-1GY01-0AA0, SCALANCE W1748-1 M12 6GK5748-1GY01-0TA0, SCALANCE W1788-1 M12 6GK5788-1GY01-0AA0, SCALANCE W1788-2 EEC M12 6GK5788-2GY01-0TA0, SCALANCE W1788-2 M12 6GK5788-2GY01-0AA0, SCALANCE W1788-2IA M12 6GK5788-2HY01-0AA0, SCALAN...

CVE-2024-30190

The CVE-2024-30190 entry covers Siemens SCALANCE W700/W721/W722/W734/W738/W748/W761/W774/W778/W786/W788 lines (and variants) affected by a weakness where a victim client can be tricked into enabling its power-saving mechanism, allowing a nearby attacker to trigger disconnections and a denial-of-s...

CVE-2024-30190

A vulnerability has been identified in SCALANCE W1748-1 M12 6GK5748-1GY01-0AA0, SCALANCE W1748-1 M12 6GK5748-1GY01-0TA0, SCALANCE W1788-1 M12 6GK5788-1GY01-0AA0, SCALANCE W1788-2 EEC M12 6GK5788-2GY01-0TA0, SCALANCE W1788-2 M12 6GK5788-2GY01-0AA0, SCALANCE W1788-2IA M12 6GK5788-2HY01-0AA0, SCALAN...

April 9, 2024—KB5036909 (OS Build 20348.2402)

April 9, 2024—KB5036909 OS Build 20348.2402 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when n...

April 9, 2024—KB5036894 (OS Build 22000.2899)

April 9, 2024—KB5036894 OS Build 22000.2899 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 21H2, see its update history page. Note Follow @WindowsUpdate to find out...

Siemens SCALANCE W700产品系列安全漏洞

Siemens SCALANCE is a series of Ethernet switches from Siemens, Germany. It connects to Industrial Control System ICS devices, including Programmable Logic Controllers PLCs and Human Machine Interface HMI systems. A security vulnerability exists in the Siemens SCALANCE W700 product family, which...

PT-2024-21958 · Prestashop · Apaczka Plugin

Name of the Vulnerable Software and Affected Versions: Apaczka plugin for PrestaShop versions v1 through v4 Description: The issue is related to improper access control in the Apaczka plugin for PrestaShop, allowing unauthorized information gathering from saved templates without the need for...

CLSA-2024-1711564050 Update of tzdata

Upgrade to tzdata-2024a - Kazakhstan unifies on UTC+5 beginning 2024-03-01. - Palestine springs forward a week later after Ramadan. - localtime no longer mishandles Ciudad Juárez in 2422. - zic no longer pretends to support indefinite-past DST. - Ittoqqortoormiit, Greenland changes time zones on...

CLSA-2024-1711563891 Update of tzdata

Upgrade to tzdata-2024a - Kazakhstan unifies on UTC+5 beginning 2024-03-01. - Palestine springs forward a week later after Ramadan. - localtime no longer mishandles Ciudad Juárez in 2422. - zic no longer pretends to support indefinite-past DST. - Ittoqqortoormiit, Greenland changes time zones on...

CLSA-2024-1711563462 Update of tzdata

Upgrade to tzdata-2024a - Kazakhstan unifies on UTC+5 beginning 2024-03-01. - Palestine springs forward a week later after Ramadan. - localtime no longer mishandles Ciudad Juárez in 2422. - zic no longer pretends to support indefinite-past DST. - Ittoqqortoormiit, Greenland changes time zones on...