Lucene search
K

2680 matches found

ThreatPost
ThreatPost
added 2018/11/20 8:49 p.m.48 views

Critical Adobe Flash Bug Impacts Windows, macOS, Linux and Chrome OS

Adobe released a patch for a critical flaw on Tuesday that leaves its Flash Player vulnerable to arbitrary code execution by an adversary. Affected are versions of the Flash Player running on Windows, macOS, Linux and Chrome OS. In tandem, a Microsoft Security Advisory was also issued for the bug...

10CVSS9.3AI score0.71536EPSS
Exploits4References5
Cvelist
Cvelist
added 2018/11/19 2:0 p.m.26 views

CVE-2018-15761 UAA Privilege Escalation

Cloud Foundry UAA release, versions prior to v64.0, and UAA, versions prior to 4.23.0, contains a validation error which allows for privilege escalation. A remote authenticated user may modify the url and content of a consent page to gain a token with arbitrary scopes that escalates their...

9.9CVSS9.4AI score0.01713EPSS
Exploits0References1
Lenovo
Lenovo
added 2018/11/14 1:32 a.m.38 views

Synaptics Touchpad Driver Leaks Kernel Memory Pointers - US

Lenovo Security Advisory: LEN-23156 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2018-15532 Summary Description: Synaptics has informed Lenovo of a vulnerability in the Synaptics TouchPad driver. The driver can reveal freed kernel memo...

2.1CVSS3.5AI score0.00696EPSS
Exploits0
Prion
Prion
added 2018/11/02 10:29 p.m.17 views

Privilege escalation

Pivotal Operations Manager, versions 2.0.x prior to 2.0.24, versions 2.1.x prior to 2.1.15, versions 2.2.x prior to 2.2.7, and versions 2.3.x prior to 2.3.1, grants all users a scope which allows for privilege escalation. A remote malicious user who has been authenticated may create a new client...

6.5CVSS8.6AI score0.01078EPSS
Exploits0References1Affected Software1
ossfuzz
ossfuzz
added 2018/10/30 8:59 a.m.19 views

jsc: Stack-use-after-scope in JSC::MarkedBlock::vm

Detailed report: https://oss-fuzz.com/testcase?key=5635965041770496 Project: jsc Fuzzer: jsfuzzer Job Type: asanjsc Platform Id: linux Crash Type: Stack-use-after-scope READ 8 Crash Address: 0x7fffb7b6bed8 Crash State: JSC::MarkedBlock::vm JSC::JSObject JSC::jsCast JSC::asObject Sanitizer: addres...

6.8AI score
Exploits0Affected Software1
Hacker One
Hacker One
added 2018/10/14 7:44 p.m.255 views

Chaturbate: Passive stored XSS at broadcast room

The hacker found that a specially crafted app names could insert a small amount of data into an A tag's href in the "Broadcaster is running these apps: " chat text. Because of the character limit this required multiple successive clicks on different app names, and in the example utilised the room...

5.9AI score
Exploits0
Prion
Prion
added 2018/10/10 6:29 p.m.22 views

Remote code execution

Receipt of a specific MPLS packet may cause the routing protocol daemon RPD process to crash and restart or may lead to remote code execution. By continuously sending specific MPLS packets, an attacker can repeatedly crash the RPD process causing a sustained Denial of Service. This issue affects...

5.8CVSS8.9AI score0.01158EPSS
Exploits0References2Affected Software1
MSRC
MSRC
added 2018/10/02 11:4 p.m.59 views

Standing behind “MSRC Listens”

Last week at BlueHat’s “MSRC Listens” session, I took the stage with Mechele Gruhn, manager of the Vulnerability Response PM team, to explain how MSRC is changing our communication, workflows, and tooling to deliver an improved user experience for our partners in the security research community. ...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/09/24 9:41 a.m.9 views

bojna.hr XSS vulnerability

Open Bug Bounty ID: OBB-679420 Description| Value ---|--- Affected Website:| bojna.hr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Veeam
Veeam
added 2018/09/19 12:0 a.m.22 views

Dell PowerPath - Veeam Agent for Linux Limitations

Challenge If a Linux server has Dell PowerPath devices attached, all the underlying block devices representing the network paths to the server are skipped from processing. This will result in the error "No objects to backup" or PowerPath devices missing from the backup. If non-PowerPath devices a...

6.8AI score
Exploits0Affected Software1
exploitpack
exploitpack
added 2018/08/17 12:0 a.m.17 views

Microsoft Edge Chakra JIT - Parameter Scope Parsing Type Confusion

Microsoft Edge Chakra JIT - Parameter Scope Parsing Type Confusion // PoC: async function triggera = class b await 1 let spray = ; for let i = 0; i 0016 SetHomeObj R13 R14 001b NewScObjectSimple R9 001d ProfiledStFld R9.value = R2 1 0021 ProfiledStFld R9.done = R4 2 0025 Yield R9 R9...

0.5AI score
Exploits0
CNVD
CNVD
added 2018/08/17 12:0 a.m.4 views

ASUSTOR ADM SQL Injection Vulnerability

ASUSTOR ADM is an operating system from ASUSTOR dedicated to ASUSTOR NAS storage devices. photo gallery is one of the photo management applications. An SQL injection vulnerability exists in the 'albumid' and 'scope' parameters of the tree list function of the photo gallery application in ASUSTOR...

9.8CVSS9.9AI score0.11176EPSS
Exploits7References1
0day.today
0day.today
added 2018/08/17 12:0 a.m.125 views

Microsoft Edge Chakra JIT - Scope Parsing Type Confusion Exploit

Exploit for windows platform in category dos / poc // PoC: async function triggera = class b await 1 let spray = ; for let i = 0; i 0016 SetHomeObj R13 R14 001b NewScObjectSimple R9 001d ProfiledStFld R9.value = R2 1 0021 ProfiledStFld R9.done = R4 2 0025 Yield R9 R9...

7.6CVSS0.2AI score0.71043EPSS
Exploits3
Packet Storm
Packet Storm
added 2018/08/17 12:0 a.m.42 views

Microsoft Edge Chakra Parameter Scope Parsing Bug

Microsoft Edge: Chakra: Parameter scope parsing bug CVE-2018-8279 PoC: async function triggera = class b await 1 let spray = ; for let i = 0; i 0016 SetHomeObj R13 R14 001b NewScObjectSimple R9 001d ProfiledStFld R9.value = R2 1 0021 ProfiledStFld R9.done = R4 2 0025 Yield R9 R9 0037...

7.6CVSS0.5AI score0.71043EPSS
Exploits3
Exploit DB
Exploit DB
added 2018/08/17 12:0 a.m.43 views

Microsoft Edge Chakra JIT - Parameter Scope Parsing Type Confusion

// PoC: async function triggera = class b await 1 let spray = ; for let i = 0; i 0016 SetHomeObj R13 R14 001b NewScObjectSimple R9 001d ProfiledStFld R9.value = R2 1 0021 ProfiledStFld R9.done = R4 2 0025 Yield R9 R9 ----------------------------------------------- 0028 ResumeYield R15 R9 002b...

7.4AI score
Exploits0
OSV
OSV
added 2018/08/16 8:29 p.m.6 views

CVE-2018-11511

The tree list functionality in the photo gallery application in ASUSTOR ADM 3.1.0.RFQ3 has a SQL injection vulnerability that affects the 'albumid' or 'scope' parameter via a photo-gallery/api/album/treelists/ URI...

9.8CVSS5.8AI score0.11176EPSS
Exploits7References2
Information Security Automation
Information Security Automation
added 2018/08/05 12:53 a.m.52 views

What I expect from IT Asset Inventory

The main problem of vulnerability management, in my opinion, is that it is not always clear whether we know about ALL network hosts existing in our infrastructure or not. So, not the actual process of scanning and the detection of vulnerabilities, but the lack of knowledge what we should scan...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2018/08/01 12:0 a.m.5 views

PT-2018-16274 · Focalscope · Focalscope

Name of the Vulnerable Software and Affected Versions: FocalScope version v2416 Description: An exploitable unauthenticated XML external injection vulnerability was identified. A unauthenticated attacker could submit a specially crafted web request to FocalScope's server that could cause an XXE,...

9.4CVSS9.3AI score0.01235EPSS
Exploits1References2
Veracode
Veracode
added 2018/07/13 12:13 a.m.10 views

Malicious Package

A malicious version of eslint-scope has been published onto the npm registry. This malicious version attempts to steal the user's npm authentication token from .npmrc through a postinstall script specified in package.json. Successful attempts would result in compromised authentication tokens...

6.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2018/07/12 7:52 p.m.17 views

Malicious Package in eslint-scope

Version 3.7.2 of eslint-scope was published without authorization and was found to contain malicious code. This code would read the users .npmrc file and send any found authentication tokens to 2 remote servers. Recommendation The best course of action if you found this package installed in your...

2.3AI score
Exploits0References5Affected Software2
Rows per page
Query Builder