open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper

A flaw was found in open-vm-tools. This flaw allows a malicious actor with non-root privileges to hijack the /dev/uinput file descriptor, allowing them to simulate user inputs...

CVE-2014-9733

CVE-2014-9733 concerns nw.js. The connected documents indicate that NW.js before 0.11.5 can simulate user input events within a normal frame, enabling a remote attacker to cause an unknown impact via unknown vectors. The CNVD entry explicitly notes a vulnerability in nw.js prior to 0.11.5 and men...