CVE-2024-51996 Symphony has an Authentication Bypass via RememberMe

Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. When consuming a persisted remember-me cookie, Symfony does not check if the username persisted in the database matches the username attached with the cookie, leading to authentication bypass. Th...

CVE-2024-51736

Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named cmd.exe is located in the current working directory it will be called by the Process class when preparing command arguments, leading to possible hijackin...

Linux kernel memory misreference vulnerability (CNVD-2023-64508)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A memory misreference vulnerability exists in versions of Linux kernel prior to 6.4.10, which stems from the mishandling of sub-processes of sk, and can be exploited by an...

Fedora Update for php-symfony2-Process FEDORA-2013-22422

Check for the Version of php-symfony2-Process OpenVAS Vulnerability Test Fedora Update for php-symfony2-Process FEDORA-2013-22422 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Apache 2.2.x Scoreboard本地安全限制绕过漏洞

BUGTRAQ ID: 51407 CVE ID: CVE-2012-0031 Apache HTTP Server是Apache软件基金会的一个开放源代码的网页服务器，可以在大多数电脑操作系统中运行，由于其跨平台和安全性被广泛使用，是最流行的Web服务器端软件之一。 Apache HTTP Server中的子进程可以更改scoreboard共享内存段的内存类型记录，这会被利用造成父进程关闭时无效的释放操作，使本地攻击者可绕过某些安全限制。 0 Apache 2.2.x 厂商补丁： Apache Group ------------...