SolarWinds FTP Voyager 缓冲区错误漏洞

SolarWinds FTP Voyager is an FTP client software developed by the American company SolarWinds. Version 16.2.0 of SolarWinds FTP Voyager contains a buffer overflow vulnerability. This vulnerability arises from improper handling of data in the IP field of the site configuration file. It is possible...

Missing Origin Validation in WebSockets

Overview next is a react framework. Affected versions of this package are vulnerable to Missing Origin Validation in WebSockets in the internal dev endpoint when the Origin header is set to null. An attacker can interact with internal development websocket traffic by connecting from...

CVE-2023-4522

An issue has been discovered in GitLab affecting all versions before 16.2.0. Committing directories containing LF character results in 500 errors when viewing the commit...

CVE-2023-4522 Improper Validation of Specified Type of Input in GitLab

An issue has been discovered in GitLab affecting all versions before 16.2.0. Committing directories containing LF character results in 500 errors when viewing the commit...

VMware Workstation 16.0.x < 16.2.0 Heap Overflow RCE (VMSA-2022-0001)

VMware Workstation contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able to exploit this vulnerability in conjunction with other issues to execute code on the hypervisor from a virtual machine...