1779 matches found
Nextcloud: 2FA Session not expires after the password reset
A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset...
radare2/ia_fuzz: Heap-buffer-overflow in r_read_le32
Project: https://github.com/radare/radare2.git Detailed report: https://oss-fuzz.com/testcase?key=5166506139189248 Project: radare2 Fuzzer: aflradare2iafuzz Fuzz target binary: iafuzz Job Type: aflasanradare2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x629000027603...
Microsoft Edge Chakra - JsBuiltInEngineInterfaceExtensionObject::InjectJsBuiltInLibraryCode
/ The JsBuiltInEngineInterfaceExtensionObject::InjectJsBuiltInLibraryCode method is used to execute JsBuiltIn.js which initializes some builtin objects. Because it's essentially written in JavaScript, it needs to clear the disable-implicit-call flag before calling the JavaScript code, otherwise i...
Twitter bug exposed private tweets of Android users to public for years
By Carolina A security bug in Twitter exposed private tweets of users to the public. The flaw only affected Android users of the Twitter app while iPhone users were not affected. According to Twitter, private tweets of users from November 3, 2014, to January 14, 2019, were exposed. Although the...
CVE-2018-15457
CVE-2018-15457 affects Cisco Prime Infrastructure web-based management interface. The vulnerability arises from insufficient validation of user-supplied input, enabling an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack by convincing a user to click a malicious lin...
Fedora 28 : python-cryptography / python-cryptography-vectors (2018-a9fe5e183e)
New upstream release 2.3 Fixes possible tag truncation security bug in AEAD API, see RHBZ1602752 2.3 - 2018-07-18 - SECURITY ISSUE: finalizewithtag allowed tag truncation by default which can allow tag forgery in some cases. The method now enforces the mintaglength provided to the GCM constructor...
SUSE SLES12 Security Update : slurm (SUSE-SU-2017:3311-1)
This update for slurm fixes the following issues: Slurm was updated to 17.02.9 to fix a security bug, bringing new features and bugfixes fate323998 bsc1067580. Security issue fixed : - CVE-2017-15566: Fix security issue in Prolog and Epilog by always prepending SPANK to all user-set environment...
CVE-2018-14984
The CVE-2018-14984 entry describes a vulnerability on the Leagoo Z5C (Android 6.0) where a pre-installed app, com.android.messaging, contains an exported BroadcastReceiver (TrackerSender). Any co-located app, even with no permissions, can send a crafted broadcast to this component, triggering pro...
assetauctionsgroup.com XSS vulnerability
Open Bug Bounty ID: OBB-713928 Description| Value ---|--- Affected Website:| assetauctionsgroup.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...
car-cover-france.com XSS vulnerability
Open Bug Bounty ID: OBB-710828 Description| Value ---|--- Affected Website:| car-cover-france.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...
XNU POSIX Shared Memory Mapping Issue
XNU: POSIX shared memory mappings have incorrect maximum protection CVE-2018-4435 When the mmap syscall is invoked on a POSIX shared memory segment DTYPEPSXSHM, pshmmmap maps the shared memory segment's pages into the address space of the calling process. It does this with the following code: int...
wireshark/fuzzshark_ip_proto-udp: Global-buffer-overflow in dissect_parameter_sequence
Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5767228008431616 Project: wireshark Fuzzer: aflwiresharkfuzzsharkipproto-udp Fuzz target binary: fuzzsharkipproto-udp Job Type: aflasanwireshark Platform Id: linux Crash Type:...
www3.halton.gov.uk XSS vulnerability
Open Bug Bounty ID: OBB-708291 Description| Value ---|--- Affected Website:| www3.halton.gov.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidd...
CVE-2018-15835
CVE-2018-15835 concerns Android OS battery information broadcasts. The connected materials indicate the issue arises from insecure permissions around system broadcast data, allowing apps to access high‑precision battery information without special permissions. Android versions 1.0 through 9.0 are...
www1.unipa.it XSS vulnerability
Open Bug Bounty ID: OBB-701546 Description| Value ---|--- Affected Website:| www1.unipa.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
netplant.nl XSS vulnerability
Open Bug Bounty ID: OBB-700363 Description| Value ---|--- Affected Website:| netplant.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unti...
Instagram Accidentally Exposed Some Users' Passwords In Plaintext
Instagram has recently patched a security issue in its website that might have accidentally exposed some of its users' passwords in plain text. The company recently started notifying affected users of a security bug that resides in a newly offered feature called "Download Your Data" that allows...
CVE-2018-6075
Incorrect handling of specified filenames in file downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page and user interaction...
CVE-2018-6078
Incorrect handling of confusable characters in Omnibox in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted domain name...
CVE-2018-6073
A heap buffer overflow in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page...