5 matches found
D-Tale: Remote Code Execution through redis/shelf storage
Impact Users hosting D-Tale publicly while using a redis or shelf storage layer could be vulnerable to remote code execution allowing attackers to run malicious code on the server. Patches Users should upgrade to version 3.22.0. Workarounds There are no workarounds for versions 3.22.0...
PT-2026-7041
Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw where the audin server recv formats function incorrectly calculates the number of audio formats to free upon parse failure...
PT-2025-5571 · Snowflake · Snowflake Jdbc Driver
Name of the Vulnerable Software and Affected Versions: Snowflake JDBC Driver versions 3.6.8 through 3.21.0 Description: The Snowflake JDBC Driver has a vulnerability that affects Linux systems when temporary credential caching is enabled. In this scenario, the driver caches temporary credentials...
PT-2025-5570 · Snowflake · Snowflake Jdbc Driver
Name of the Vulnerable Software and Affected Versions: Snowflake JDBC Driver versions 3.2.3 through 3.21.0 Description: The issue allows an attacker with write access to a directory in the %PATH% to escalate their privileges to the user that runs the vulnerable JDBC Driver version when the...
PT-2023-28595 · Oracle · Java
Name of the Vulnerable Software and Affected Versions: Redisson versions prior to 3.22.0 Description: The issue concerns a Java Redis client that uses the Netty framework. Prior to version 3.22.0, some messages received from the Redis server contain Java objects that the client deserializes witho...