PT-2023-5883

Name of the Vulnerable Software and Affected Versions curl versions 7.82.0 through 8.4.0 libcurl versions 7.82.0 through 8.4.0 MySQL versions 5.7.43 and earlier, 8.0.34 and earlier, 8.1.0 and earlier Description curl and libcurl are vulnerable to a heap buffer overflow in the SOCKS5 proxy...

PT-2022-9505 · WordPress · Transposh Wordpress Translation Plugin

Name of the Vulnerable Software and Affected Versions: Transposh WordPress Translation plugin versions prior to 1.0.8 Description: The issue is related to Stored Cross-Site Scripting. It occurs because the tk0 parameter from the tp translation AJAX action is not properly sanitized and escaped. Th...

PT-2022-22114 · Openiam · Openam

Name of the Vulnerable Software and Affected Versions: OpenAM versions prior to 14.6.6 Description: The NT auth module in OpenAM allows a "replace Samba username attack." This issue may potentially be exploited to bypass authentication mechanisms. Recommendations: For versions prior to 14.6.6,...

PT-2022-3090 · Motorola · Motorola Moscad Toolbox

Name of the Vulnerable Software and Affected Versions: Motorola MOSCAD Toolbox software through 2022-05-02 Description: The issue concerns the use of a cleartext password in the Motorola MOSCAD Toolbox software. This password is stored in the wmdlcdrv.ini driver configuration file and is used for...

PT-2022-18243 · Xpdf +1 · Xpdf +1

Name of the Vulnerable Software and Affected Versions: xpdf version 4.03 Description: The issue is a heap buffer overflow in the readXRefTable function located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service Segmentation fault or other unspecified effects by sending a...

PT-2022-3119 · Oracle +11 · Java Se +13

Name of the Vulnerable Software and Affected Versions: Oracle Java SE versions 7u331, 8u321, 11.0.14, 17.0.2, 18 Oracle GraalVM Enterprise Edition versions 20.3.5, 21.3.1, 22.0.0.2 Description: The issue is related to insufficient input validation in the JNDI component of the Oracle Java SE and...

PT-2022-15153 · Nvidia · Nvidia Jetson Linux

Name of the Vulnerable Software and Affected Versions: NVIDIA Jetson Linux affected versions not specified Description: The issue is related to an error in the IOMMU configuration, which may allow an unprivileged attacker with physical access to the board direct read/write access to the entire...

PT-2022-1456 · Django +6 · Django +6

Name of the Vulnerable Software and Affected Versions: Django versions 2.2 before 2.2.27 Django versions 3.2 before 3.2.12 Django versions 4.0 before 4.0.2 Description: The % debug % template tag in Django does not properly encode the current context, which may lead to XSS. This issue is related ...

PT-2021-1521 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to the version that includes the fix for the double free bug in packet set ring Description: A double free bug in the packet set ring function in net/packet/af packet.c can be exploited by a local user through...

PT-2021-12: Authentication pypass by capture-replay in FX5U(C) CPU and FX5UJ CPU modules

The vulnerability of the FX5UC CPU and FX5UJ CPU modules of Mitsubishi Electric FA products is associated with the possibility of bypass authorization using capture-replay of intercepted parameters. Exploitation of the vulnerability may allow an attacker who has intercepted the parameters of the...

PT-2021-5597

Name of the Vulnerable Software and Affected Versions Log4j version 1.2 Description The issue is related to the JMSAppender in Log4j 1.2, which is vulnerable to deserialization of untrusted data. An attacker with write access to the Log4j configuration can provide TopicBindingName and...

PT-2021-8182 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.15.0-rc2+ Description: The vulnerability is related to a NULL pointer dereference in the set hv tscchange cb function when setting Hyper-V's TSC change callback. If Hyper-V setup fails, the kernel will still...

PT-2021-16193 · WordPress · The Weather Effect

Name of the Vulnerable Software and Affected Versions: The Weather Effect WordPress plugin versions prior to 1.3.4 Description: The issue is related to the lack of CSRF checks and input validation when saving settings, which could lead to a Stored Cross-Site Scripting issue. This means that an...

PT-2021-10901 · Unknown · Leo Editor

Name of the Vulnerable Software and Affected Versions: Leo Editor version 6.2.1 Description: The issue is related to a regular expression denial of service ReDoS vulnerability in the component plugins/importers/dart.py. This vulnerability was discovered in the Leo Editor. Recommendations: For Leo...

PT-2021-4809 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux Kernel version 5.14-rc3 Description: This issue allows local attackers to escalate privileges on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit...

PT-2021-3382 · Linux +10 · Linux Kernel +10

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.25 through 5.13-rc6 Description: A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate...

PT-2021-1509 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Bluetooth Core Specification versions 2.1 through 5.2 Linux kernel affected versions not specified Description: The issue is related to weaknesses in the authentication procedure of the Bluetooth Core Specification, which can be exploited by ...

PT-2021-14668 · Amazon +2 · Aws Parameter Store Build Wrapper +4

Name of the Vulnerable Software and Affected Versions: Jenkins CloudBees AWS Credentials Plugin versions 1.28 and earlier Description: The issue allows attackers with Overall/Read permission to enumerate credentials IDs of AWS credentials stored in Jenkins under certain circumstances. This can...

PT-2021-2432 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.11.6 Description: The issue is related to the rtw wx set scan function in the Linux kernel, which allows writing beyond the end of the -ssid array. This can lead to a buffer overflow in memory. The exploitation...

PT-2021-12494 · Allen Bradley · Allen-Bradley Flex Io 1794-Aent/B

Name of the Vulnerable Software and Affected Versions: Allen-Bradley Flex IO 1794-AENT/B version 4.003 Description: An exploitable denial of service issue exists in the ENIP Request Path Network Segment functionality. A specially crafted network request can cause a loss of communications with the...

PT-2021-16511 · Belkin · Belkin Linksys Wrt160Nl

Name of the Vulnerable Software and Affected Versions: Belkin Linksys WRT160NL version 1.0.04.002 US 20130619 Description: The administration web interface on Belkin Linksys WRT160NL devices allows remote authenticated attackers to execute system commands with root privileges via shell...

PT-2021-3164 · Qos.Ch +3 · Logback +3

Name of the Vulnerable Software and Affected Versions: FasterXML jackson-databind versions 2.x before 2.9.10.8 FasterXML jackson-databind versions 2.6.x before 2.6.7.5 Description: The issue is related to the interaction between serialization gadgets and typing, specifically with the...

PT-2020-6720 · Samba +9 · Samba +9

Name of the Vulnerable Software and Affected Versions: Samba affected versions not specified Description: A flaw was found in the way Samba handled file and directory permissions, allowing an authenticated user to gain access to certain file and directory information that would otherwise be...

PT-2020-19738 · Deeps · Deeps

Name of the Vulnerable Software and Affected Versions: deeps versions prior to 1.4.6 Description: The issue concerns Prototype Pollution via the set function. This allows for potential manipulation of object properties, which could lead to various security issues. Recommendations: For versions...

PT-2020-3442 · Mysql Server +7 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.20 and prior Description: The issue is related to insufficient access control in the InnoDB component of the MySQL Server. It can be exploited by a remote attacker to cause a denial of service using the MySQL protoco...

PT-2020-3444 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.20 and prior Description: The issue is related to insufficient access control in the Server: Parser component of Oracle MySQL Server. It can be exploited by a remote attacker to cause a denial of service using...

PT-2020-8454

Name of the Vulnerable Software and Affected Versions: Mattermost Server versions prior to 4.0.0 Mattermost Server version 3.10.2 Mattermost Server version 3.9.2 Description: An issue was discovered where a password-reset request could be sent to an attacker-provided e-mail address...

PT-2020-12514 · Oauth2 Proxy · Oauth2 Proxy

Name of the Vulnerable Software and Affected Versions: OAuth2 Proxy versions prior to 5.1.1 Description: The issue is related to an open redirect vulnerability. Users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow. This redirec...

PT-2020-1882 · Cisco · Cisco Dna Center

Name of the Vulnerable Software and Affected Versions: Cisco DNA Center Software versions prior to 1.3.0.6 Cisco DNA Center Software versions prior to 1.3.1.4 Description: The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affect...

PT-2019-5863 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 6.9.10-69 Description: The issue is related to the ApplyEvaluateOperator function in the /MagickCore/statistic.c component of ImageMagick, where a size t cast should have been a ssize t cast. This causes...

PT-2019-5858 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: The issue is related to the IntensityCompare function in the /MagickCore/quantize.c component of ImageMagick, where a double value is casted to int and returned, potentially causing a value...

PT-2019-5857 · Imagemagick +5 · Imagemagick +5

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-68 Description: A flaw was found in ImageMagick in coders/txt.c, related to an integer overflow of the value. This issue could allow a remote attacker to cause a denial of service using a specially crafted...

PT-2019-5216 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.2.4 Description: The issue is related to a Server Side Request Forgery SSRF vulnerability. This occurs because URL validation does not consider the interpretation of a name as a series of hex characters...

PT-2019-14422 · Unknown · Simple-Mail-Address-Encoder

Name of the Vulnerable Software and Affected Versions: simple-mail-address-encoder plugin versions prior to 1.7 Description: The issue is related to reflected XSS in the simple-mail-address-encoder plugin. Recommendations: For versions prior to 1.7, update to version 1.7 or later to resolve the...

PT-2019-4682 · Apache +6 · Apache Commons Beanutils +6

Name of the Vulnerable Software and Affected Versions: Apache Commons Beanutils versions prior to 1.9.2 Description: The issue is related to the BeanIntrospector class in Apache Commons Beanutils, which can lead to the restoration of untrusted data structures in memory. This can allow a remote...

PT-2019-6460 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.1.5 Description: The issue is related to the con insert unipair function in the drivers/tty/vt/consolemap.c component of the Linux kernel, which is associated with incorrect memory deallocation before removing...

PT-2019-5048 · Gnome +8 · Gnome Evince +8

Name of the Vulnerable Software and Affected Versions: GNOME Evince versions prior to 3.32.0 Description: The issue is related to the use of uninitialized memory in the TIFFReadRGBAImageOriented function of the Evince document viewer. This can be exploited by a remote attacker to gain unauthorize...

PT-2018-2562 · Nginx +4 · Nginx +4

Name of the Vulnerable Software and Affected Versions: nginx versions 1.14.0 through 1.14.1 nginx versions 1.15.0 through 1.15.6 Description: The issue is related to the implementation of HTTP/2 in nginx, which can lead to excessive CPU usage. This problem affects nginx compiled with the ngx http...

PT-2017-2941 · Wi Fi Alliance +8 · Wpa2 +9

Name of the Vulnerable Software and Affected Versions: WPA and WPA2 affected versions not specified Description: The issue is related to errors in cryptographic key management in the WPA2 protocol, which secures Wi-Fi networks. An attacker within radio range can exploit this issue to access...

PT-2017-12: Buffer Overflow in Intel Management Engine

The specialists of the Positive Research center have detected a Buffer Overflow vulnerability in Intel Management Engine. Multiple buffer overflows in Intel Manageability Engine Firmware, Server Platform Services Firmware, and Trusted Execution Engine Firmware allow attackers with local access to...

PT-2017-11944 · Chicken +1 · Chicken Scheme +1

Name of the Vulnerable Software and Affected Versions: CHICKEN Scheme versions prior to 4.12.1 Description: The issue is related to an incomplete fix for a previous problem, which allows an algorithmic complexity attack. An attacker can provide crafted input that, when inserted into the symbol...

PT-2018-33: Arbitrary Code Execution in NCR S2

The specialists of the Positive Research center have detected an Arbitrary Code Execution vulnerability in NCR S2. Vulnerability in the NCR S2 Dispenser controller, related to insufficient protection of the memory write mechanism, allows unauthenticated, remote attackers to execute arbitrary code...

PT-2018-30: XXE Injection in Cisco Secure ACS

The specialists of the Positive Research center have detected an XXE Injection vulnerability in Cisco Secure ACS. A vulnerability in the web-based user interface of the Cisco Secure Access Control Server, due to improper handling of XML External Entities XXEs when parsing an XML file, could allow...

PT-2017-18794 · Php +5 · Mbstring +6

Name of the Vulnerable Software and Affected Versions: Oniguruma version 6.2.0 Oniguruma-mod in Ruby versions through 2.4.1 mbstring in PHP versions through 7.1.5 Description: An issue was discovered that causes a SIGSEGV in left adjust char head during regular expression compilation. This occurs...

PT-2018-09: Code Injection in Ipswitch WhatsUp Gold

The specialists of the Positive Research center have detected a Code Injection vulnerability in Ipswitch WhatsUp Gold. A code injection vulnerability in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold allows attackers to execute arbitrary commands and code on the WhatsUp Gold server via a specially...

PT-2016-4560 · Php +4 · Phpmailer +4

Name of the Vulnerable Software and Affected Versions: PHPMailer versions prior to 5.2.18 Wordpress version 4.6 Description: The issue allows remote attackers to execute arbitrary code. This can be achieved by passing extra parameters to the mail command via a crafted Sender property in PHPMailer...

PT-2022-24411 · Phpipam +1 · Phpipam +1

Name of the Vulnerable Software and Affected Versions: phpipam versions prior to 1.5.0 Description: A vulnerability has been found in phpipam, allowing for cross site scripting through the manipulation of an unknown functionality in the file app/admin/import-export/import-load-data.php of the...

PT-2019-3245 · Oracle +9 · Mysql Server +8

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.6.44 and prior MySQL Server versions 5.7.26 and prior MySQL Server versions 8.0.16 and prior Description: The issue is related to improper access control in the MySQL Server component of Oracle MySQL, specifically in t...

PT-2015-2509 · Oracle +7 · Mysql Server +6

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 5.5.43 and earlier Oracle MySQL Server versions 5.6.24 and earlier Description: The issue is related to errors in the code of the Server: Security: Privileges subcomponent of the MySQL database management system. ...

PT-2014-1796

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 6.6 OpenSSH version 5.3p1 Description The issue allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character in the AcceptEnv lines of the sshd config...