CVE-2023-6870

Applications which spawn a Toast notification in a background thread may have obscured fullscreen notifications displayed by Firefox. This issue only affects Android versions of Firefox and Firefox Focus. This vulnerability affects Firefox 121...

CVE-2023-6870

Applications which spawn a Toast notification in a background thread may have obscured fullscreen notifications displayed by Firefox. This issue only affects Android versions of Firefox and Firefox Focus. This vulnerability affects Firefox 121...

PT-2023-35648 · Git +1 · Libavc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap buffer overflow issue is reported, with a crash type indicating a WRITE operation. The crash state involves functions such as ih264d format conver...

CVE-2023-50871

In JetBrains YouTrack before 2023.3.22268 authorization check for inline comments inside thread replies was missed...

Authorization

In JetBrains YouTrack before 2023.3.22268 authorization check for inline comments inside thread replies was missed...

CVE-2023-50871

The CVE covers a vulnerability in JetBrains YouTrack: prior to 2023.3.22268, an authorization check for inline comments inside thread replies could be bypassed, exposing unauthorized access to sensitive inline-comment data. Affected software is JetBrains YouTrack (pre-2023.3.22268); root cause is...

New PoolParty Process Injection Techniques Outsmart Top EDR Solutions

A new collection of eight process injection techniques, collectively dubbed PoolParty, could be exploited to achieve code execution in Windows systems while evading endpoint detection and response EDR systems. SafeBreach researcher Alon Leviev said the methods are "capable of working across all...

PT-2023-9627 · Oracle +1 · Mysql Server

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.4.0 and prior Description: The issue is related to insufficient input validation in the Server: Thread Pooling component of Oracle MySQL Server. It allows an attacker with network access via multiple protocols t...

CVE-2023-48693 Azure RTOS ThreadX Remote Code Execution Vulnerability

Azure RTOS ThreadX is an advanced real-time operating system RTOS designed specifically for deeply embedded applications. An attacker can cause arbitrary read and write due to vulnerability in parameter checking mechanism in Azure RTOS ThreadX, which may lead to privilege escalation. The affected...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a code execution vulnerability that is caused by the use of callbackthreadevent after release in the comAndroidbluetoothbtserviceAdapterService.cpp script. An attacker can exploit this...

PT-2023-7533 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the December 2023 security update Description: The issue is related to a use after free vulnerability in the callback thread event function of com android bluetooth btservice AdapterService.cpp. This could lead to...

kernel: AMD: Cross-Thread Return Address Predictions

A flaw was found in HW. When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch, potentially resulting in information disclosure...

kernel: md/raid10: fix memleak of md thread

A memory leak was found in the MD RAID10 driver. When raid10run fails after setupconf succeeds but before mddev-thread is set, the conf-thread is not freed, leaking kernel thread resources...

kernel: net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

kernel: Spectre v2 SMT mitigations problem

It was found that the Linux Kernel still left the victim process exposed to attacks in some cases even after enabling the spectre-BTI mitigation with prctl. The kernel failed to protect applications that attempted to protect against Spectre v2 leaving them open to attack from other processes...

mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc

MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs pthreadcreate returns a nonzero value while executing the method createworkerthreads, the held lock is not released correctly, which allows local users to trigger a denial of...

Elevationstation - Elevate To SYSTEM Any Way We Can! Metasploit And PSEXEC Getsystem Alternative

Elevation Station Stealing and Duplicating SYSTEM tokens for fun & profit! We duplicate things, make twin copies, and then ride away. You have used Metasploit's getsystem and SysInternals PSEXEC for getting system privs, correct? Well, here's a similar standalone version of that...but without the...

CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally...

CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally...

Design/Logic Flaw

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally...