A vulnerability in Samsung Mobile Android FotaAgent allows creating privileged files without proper permission from an unprivileged process.
e3810d2e688f9fc069b61a91ba1ba6ef53afbcceddaff8c8bf92c5f1df2310d7The Samsung Text-to-speech Engine System Component on Android suffers from a local privilege escalation vulnerability. Versions before 3.0.02.7 and 3.0.00.101 are affected.
0d093179d423c619721dc672bd7bc6eaeeb19d3efbc97e21f23bfea24d9f9d7aACTi ACM-3100 Camera remote command execution exploit.
7f1e9ea1a491c60e423b6fa50cb927189ea09b4233fc7981a0cbffb3c87e6eddJira Server and Data Center suffer from a template injection vulnerability. Versions affected include 7.0.10 up to 7.6.16, 7.7.0 up to 7.13.8, 8.0.0 up to 8.1.3, 8.2.0 up to 8.2.5, 8.3.0 up to 8.3.4, and 8.4.0 up to 8.4.1.
9506b8cb8908b8c285b6269247edf4b6b2be0b43fcb2a0b7d2fa9067b0e39019Bitbucket Server and Bitbucket Data Center suffer from an argument injection vulnerability. Versions affected include those below 5.16.10, 6.0.0 up to 6.0.10, 6.1.0 up to 6.1.8, 6.2.0 up to 6.2.6, 6.3.0 up to 6.3.5, 6.4.0 up to 6.4.3, and 6.5.0 up to 6.5.2.
f74fc41b48501d9f142c1aee97abb78b90b5831e3806ca134f9a53e9580e340fUbuntu Security Notice 4139-1 - It was discovered that File Roller incorrectly handled certain TAR files. An attacker could possibly use this issue to overwrite sensitive files during extraction.
8a79210a95de71453196679469a5650d860d21dda2f26b399cba66d8dd43fb4eRed Hat Security Advisory 2019-2900-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
c8da3dacce85326ec43d8f9cd77ec2388abe3c4f0ab080845d7307b96ba54b0dRed Hat Security Advisory 2019-2899-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
109523b156bc3526a7ac7d5ea0b7400c37f779ac997f3d5e0de049a0c80eac6fDebian Linux Security Advisory 4531-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
1df9274204c772d5f808506906e6e599454f3b3da9e257e9a87b359fcd24bec9Debian Linux Security Advisory 4532-1 - It was discovered that SPIP, a website engine for publishing, would allow unauthenticated users to modify published content and write to the database, perform cross-site request forgeries, and enumerate registered users.
91fcccc1e00b0774df0025f5b0586e72edbb0b614c9ea84e4d7f9b4d49c5d5f6Red Hat Security Advisory 2019-2825-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains cri-o RPM packages for Red Hat OpenShift Container Platform 4.1.17. A credential disclosure issue was addressed.
f4a67a2b99c7c0559d94ac4aa7a193242130970a67c8bf079bd975b1880aad28Red Hat Security Advisory 2019-2896-01 - In accordance with the Red Hat Enterprise Linux Errata Support Policy, Extended Update Support for Red Hat Enterprise Linux 7.4 is retired as of August 31, 2019, and active support will no longer be provided. Accordingly, Red Hat will no longer provide updated packages, including Critical Impact security patches or Urgent Priority bug fixes, for Red Hat Enterprise Linux 7.4 EUS after August 31, 2019.
b19daf6f1a0bd44be8b26695b136b78df13ab05a833aa5af4effa9075246f346Red Hat Security Advisory 2019-2901-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a buffer overflow vulnerability.
8fe625f28de730b03614255a493b206bdbac0d78264dac8952a22e9da6d43319Chrome suffers from a use-after-free vulnerability due to a double call to IndexedDBConnection::Close.
224d81c1e2768b3a4b05adfeb30a609ac48d837bde76d9cc912b62b3f06e8733Chrome suffers from a use-after-free vulnerability in ~LevelDBIteratorImpl.
422a3b74a14e37e109fac59aed3661fc56ae4c327305a6990330758d6c77737fYzmCMS version 5.3 suffers from a host header injection vulnerability.
993cbe2296409972d5442de8210376d8c7e0603598f40b34641e27eff3b67cd2NPMJS gitlabhook version 0.0.17 suffers from a remote command execution vulnerability.
fc0c7dc65272d0340670454bc0b33b55ca658d8d6e7f4ccd7894b23f4a32858aWP Server Log Viewer version 1.0 suffers from a persistent cross site scripting vulnerability.
4e2de8e4421dd3eced4916c7fbc26d44b30be39bdd809b487cc4ad3aca0f798aSpotIE Internet Explorer Password Recovery version 2.9.5 suffers from a denial of service vulnerability.
c9142e2fb70988982fe4546462aa91d406086c09636bf1679f40ecb60bd8b1daChamilo LMS version 1.11.8 suffers from a remote shell upload vulnerability.
26ed7eb7715c48142327c1a8f3a63758ef87238dd0914fdcd52781b28aedcb3dvBulletin version 5.x pre-authentication remote code execution zero day exploit.
35e895c984e393390fc6a2c122105de7943500da5130701dc0d2952b5feb5148Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
cee5f6535cd7fe63fddceab62eb3bc66a63fc464466c88ec7a41b7a1331ac74bUbuntu Security Notice 4138-1 - It was discovered that LibreOffice incorrectly handled embedded scripts in document files. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary code.
35de2613e4284f14f087555d52e861df76ee5b21c98f0c0d29c66caec5071819This Metasploit module attempts to gain root privileges on RHEL systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler. sosreport uses an insecure temporary directory, allowing local users to write to arbitrary files (CVE-2015-5287). This module has been tested successfully on abrt 2.1.11-12.el7 on RHEL 7.0 x86_64 and abrt 2.1.11-19.el7 on RHEL 7.1 x86_64.
fb67e2e69d375b5a9cd6b9e13c28c727a1dc0a6071f2e268e407fb071b35e7f5Microsoft SharePoint 2013 SP1 suffers from a persistent cross site scripting vulnerability.
61c2df19bbe2d9b9d90f58447baab7c47bff3130a7637eda0622119ec87336cb
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed