TencentOS Server 3: xorg-x11-server (TSSA-2026:0378)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0378 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2022-49321

The CVE-2022-49321 entry is supported by concrete details in connected documents. Affected software: the Linux kernel with the rpcrdma/xprtrdma components. The root cause is described as: when a RDMA server returns a fault format reply and bc_serv is NULL, calls are not treated as a bcall, leadin...

CVE-2023-33370

An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing attackers to cause the main web server of IDSecure to fault and crash, causing a denial of service...

CVE-2022-38744

An unauthenticated attacker with network access to a victim's Rockwell Automation FactoryTalk Alarm and Events service could open a connection, causing the service to fault and become unavailable. The affected port could be used as a server ping port and uses messages structured with XML...

xmlrpc: Deserialization of server-side exception from faultCause in XMLRPC error response

A flaw was discovered where the XMLRPC client implementation in Apache XMLRPC, performed deserialization of the server-side exception serialized in the faultCause attribute of XMLRPC error response messages. A malicious or compromised XMLRPC server could possibly use this flaw to execute arbitrar...