CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added...

YearnTokenAdapter allows a maximum loss of 100% when withdrawing

Lines of code Vulnerability details Impact YearnTokenAdapter allows slippage of 100% when withdrawing from the vault which will cause a loss of funds. Here's the documentation straight from the vault contract: It allows the user to specify the maxLoss as the last parameter. It determines how many...

PT-2022-2450 · Microsoft · Windows Remote Access Connection Manager +1

Name of the Vulnerable Software and Affected Versions: Windows Remote Access Connection Manager affected versions not specified Description: The issue is related to insufficient access restrictions in the Windows Remote Access Connection Manager service, which can be exploited to elevate...

Jenkins allows Cross-Site Scripting (XSS)

Cross-site scripting XSS vulnerability in Jenkins before 1.454, Jenkins LTS before 1.424.5, and Jenkins Enterprise 1.400.x before 1.400.0.13 and 1.424.x before 1.424.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than...

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

CVE-2021-4138

Geckodriver vulnerability CVE-2021-4138 is supported by the CNNVD entry, which states that geckodriver versions prior to 0.30.0 are affected due to improved host header checks. The issue affects the HTTP API exposed by geckodriver/WebDriver; impact and exploitation details are not deeply describe...

CVE-2021-4138

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname...

casters.pro Cross Site Scripting vulnerability OBB-2540148

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Missing permission checks in Jenkins Publish Over FTP Plugin

Missing permission checks in Jenkins Publish Over FTP Plugin prior to 1.17 allow attackers with Overall/Read permission to connect to an FTP server using attacker-specified credentials...

CSRF vulnerability in Jenkins Subversion Plugin

Subversion Plugin 2.15.3 and earlier does not require POST requests for several form validation methods, resulting in cross-site request forgery CSRF vulnerabilities. These vulnerabilities allow attackers to connect to an attacker-specified URL...

PT-2022-3818 · Cisco · Cisco Iox +1

Name of the Vulnerable Software and Affected Versions: Cisco IOx affected versions not specified Description: The issue exists due to incorrect restriction of the directory path name with limited access. An attacker could inject arbitrary commands into the underlying host operating system, execut...

CVE-2022-29051

Missing permission checks in Jenkins Publish Over FTP Plugin 1.16 and earlier allow attackers with Overall/Read permission to connect to an FTP server using attacker-specified credentials...

PT-2022-2869 · Microsoft · Windows Cluster Shared Volume +1

Name of the Vulnerable Software and Affected Versions: Windows Cluster Shared Volume CSV affected versions not specified Description: The issue is related to insufficient input validation in the Windows Cluster Shared Volume CSV file system, which can be exploited to cause a denial of service. Th...

Jenkins 跨站请求伪造漏洞

Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.The Jenkins Publish Over FTP Plugin is vulnerable to cross-site request forgery, which can be exploited by an attacker to...

PT-2022-2934 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: .NET Framework affected versions not specified Description: The issue is related to incorrect cleanup or release of resources in the .NET Framework, which can be exploited by a remote attacker to cause a denial of service, affecting the syste...

PT-2022-2566 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the implementation of the LDAP protocol in Microsoft Windows, specifically due to insufficient input validation. This can allow a remote attacker to execute arbitrar...

PT-2022-2598 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the implementation of the Lightweight Directory Access Protocol LDAP in Microsoft Windows, specifically due to insufficient input validation. This allows a remote...

PT-2022-2642 · Microsoft · Windows Graphics +1

Name of the Vulnerable Software and Affected Versions: Windows Graphics Component affected versions not specified Description: The issue is related to insufficient input validation in the Windows Graphics Component, which can be exploited by remote attackers to execute arbitrary code on the syste...

PT-2022-2890 · Microsoft · Visual Studio Code

Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: The issue is related to insufficient access control in Visual Studio Code, allowing an attacker to potentially elevate their privileges. Recommendations: At the moment, there is ...

PT-2022-2661 · Microsoft · Visual Studio

Name of the Vulnerable Software and Affected Versions: Microsoft Visual Studio affected versions not specified Description: The issue is related to insufficient access control in Microsoft Visual Studio, allowing an attacker to escalate their privileges. Recommendations: At the moment, there is n...