PT-2023-3818 · Microsoft · Windows Postscript Printer Driver +2

Name of the Vulnerable Software and Affected Versions: Windows PostScript Printer Driver Pscript and PCL6 Class Printer Driver affected versions not specified Description: The issue is related to information disclosure. It may allow an attacker to gain unauthorized access to protected information...

PT-2023-18304 · Linux · Linux

Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: The issue is related to memory corruption in Linux when the file upload API is called with parameters having large buffer. Recommendations: At the moment, there is no information about a newe...

SUSE CVE-2023-3316

A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones...

PT-2023-36174 · Google +1 · Go +1

Name of the Vulnerable Software and Affected Versions: terraform-provider-aws affected versions not specified Description: The issue is related to a security release in Go 1.19, which is used to rebuild the terraform-provider-aws package. Recommendations: At the moment, there is no information...

AZL-44130 CVE-2023-3316 affecting package openjpeg2 2.3.1-12

A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones...

LibTIFF 代码问题漏洞

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains a number of command-line tools for working with TIFF files. A security vulnerability exists in LibTIFF versions 3.9.0, 4.5.1, which stems from a failure to open an output file when a region is...

PT-2023-15818 · Huawei · Emui

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned, so: secure OS module affected versions not specified Description: The issue is related to configuration defects in the secure OS module. Successful exploitation of this defect will impact...

PT-2023-15806 · Huawei · Huawei Printer

Name of the Vulnerable Software and Affected Versions: Huawei Printer affected versions not specified Description: The issue is related to a misinterpretation of input in the Huawei Printer, which can lead to abnormal printer service upon successful exploitation. Recommendations: At the moment,...

PT-2023-24804 · Ashlar Vellum · Ashlar-Vellum Cobalt

Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Cobalt affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

CVE-2023-35149

A missing permission check in Jenkins Digital.ai App Management Publisher Plugin 2.6 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL, capturing credentials stored in Jenkins...

PT-2023-3836 · Wago · Wago 750-3X/-8X

Name of the Vulnerable Software and Affected Versions: WAGO 750-3x/-8x products affected versions not specified Description: The issue is related to uncontrolled resource consumption in the mentioned products, which may allow an unauthenticated remote attacker to cause a denial of service DoS of...

PT-2023-25168 · Digital.Ai +1 · Jenkins Digital.Ai App Management Publisher Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Digital.ai App Management Publisher Plugin versions 2.6 and earlier Description: A missing permission check in the plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL, capturing credentials...

PT-2023-3160 · Microsoft · Wdac Ole Db Provider For Sql Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is related to insufficient input validation in the Microsoft WDAC OLE DB provider for SQL Server, which can be exploited by a remote attacker...

PT-2023-3214 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in privilege management within the Windows GDI component, allowing an attacker to potentially elevate their privileges. Recommendations: At the moment, there ...

PT-2023-3502 · Microsoft · Windows Cryptoapi +1

Name of the Vulnerable Software and Affected Versions: Windows CryptoAPI affected versions not specified Description: The issue is related to insufficient input validation in the Windows CryptoAPI interface, which can be exploited by a remote attacker to cause a denial of service. This can affect...

PT-2023-3136 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks...

PT-2023-9104 · Glib +6 · Glib +6

Name of the Vulnerable Software and Affected Versions: Glib affected versions not specified Description: The issue is related to uncontrolled resource consumption in the Glib library. It may allow an attacker to cause a denial of service. Recommendations: At the moment, there is no information...

PT-2023-15936 · WordPress · Cool Plugins

Name of the Vulnerable Software and Affected Versions: Cool Plugins WordPress plugins affected versions not specified Description: The issue allows for arbitrary plugin installation and activation, potentially leading to remote code execution. This can be exploited by authenticated attackers with...

PT-2023-15782 · Unknown · Dialer Service

Name of the Vulnerable Software and Affected Versions: Dialer service affected versions not specified Description: The issue is related to a possible missing permission check in the dialer service. This could lead to a local denial of service with no additional execution privileges...

PT-2023-15786 · Unknown · Telephony Service

Name of the Vulnerable Software and Affected Versions: Telephony service affected versions not specified Description: The issue is related to a possible missing permission check in the telephony service, which could lead to a local denial of service with no additional execution privileges...