DEBIAN-CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

PT-2020-20039 · Nextcloud · Nextcloud Desktop Client

Name of the Vulnerable Software and Affected Versions: Nextcloud Desktop Client version 2.6.4 Description: The issue is related to missing sanitization of a server response in the Nextcloud Desktop Client, which allows a malicious Nextcloud Server to store files outside of the dedicated sync...

Sinter - A User-Mode Application Authorization System For MacOS Written In Swift

Sinter is a 100% user-mode endpoint security agent for macOS 10.15 and above, written in Swift. Sinter uses the user-mode EndpointSecurity API to subscribe to and receive authorization callbacks from the macOS kernel, for a set of security-relevant event types. The current version of Sinter...

Description of the security update for SharePoint Server 2019: August 11, 2020

Description of the security update for SharePoint Server 2019: August 11, 2020 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the...

CloudMe Sync Buffer Overflow (CVE-2018-6892)

A buffer overflow vulnerability exists in CloudMe Sync. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

SNMP Trap Translator: Multiple vulnerabilities

Background SNMP Trap Translator SNMPTT is an SNMP trap handler written in Perl. Description It was found that SNMP Trap Translator does not drop privileges as configured and does not properly escape shell commands in certain functions. Impact A remote attacker, by sending a malicious crafted SNMP...

Important: Red Hat Bug Fix Advisory: Satellite 6.7.2 Async Bug Fix Update

Updated Satellite 6.7 packages that fix several bugs are now available for Red Hat Satellite. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other clien...

Azure File Sync Agent v10.1 Release – June 2020 (KB4522411)

Update for Azure File Sync agent version 10.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v10.1 Release – June 2020 (KB4522411)

Update for Azure File Sync agent version 10.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v10.1 Release – June 2020 (KB4522411)

Update for Azure File Sync agent version 10.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Acronis: Arbitrary file creation via symlink attack on syncagentsrv (Acronis Sync Agent Service)

Issue class description Arbitrary file creation is a vulnerability that allows attacker to create file in arbitrary location within filesystem. This includes protected directories, such as C:\Windows, C:\windows\system32 and "C:\Program Files". If in addition, attacker has control over the file...

Azure File Sync Agent v10.1 Release – June 2020

Azure File Sync Agent v10.1 Release – June 2020 Introduction This article describes the improvements and issues that are fixed in the Azure File Sync Agent v10.1 release that is dated June 2020. Additionally, this article contains installation instructions for this release. Improvements and issue...

Release Notes for Veeam Backup & Replication 10a

More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge Release Notes for Veeam Backup & Replication 10a. Cause Please confirm that you are running version 9.5 Update 3 build 9.5.0.1536 or later prior to upgrading...

Microsoft Windows Sync Host Service Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows Sync Host Service. The...

Acronis: Acronis Sync Agent Service - Untrusted DLL Search-Ordering lead to Privilege Escalation

Vulnerability description not provided...

CVE-2020-1434

An elevation of privilege vulnerability exists in the way that the Windows Sync Host Service handles objects in memory, aka 'Windows Sync Host Service Elevation of Privilege Vulnerability'...

CVE-2020-1434

An elevation of privilege vulnerability exists in the way that the Windows Sync Host Service handles objects in memory, aka 'Windows Sync Host Service Elevation of Privilege Vulnerability'...

Privilege escalation

An elevation of privilege vulnerability exists in the way that the Windows Sync Host Service handles objects in memory, aka 'Windows Sync Host Service Elevation of Privilege Vulnerability'...