Cellebrite UFED versions 5.0 through 7.29 use four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction.
135405ff4806330d49060bed8cf3402ff174759f5f4ee2d7d009d9ee3f479b76Ubuntu Security Notice 4328-1 - It was discovered that Message ID calculation was based on uninitialized data. An attacker could potentially exploit this to obtain sensitive information. Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code. Various other issues were also addressed.
f88fa78052414e963031d9b8353b20e056a0314a78805983ab7a4b73b4fa4c5cMOVEit Transfer version 11.1.1 suffers from a remote SQL injection vulnerability.
215af4e07b4f1b0e8a564e8ed44b7b1355fc95c85e4b2fd47dbc4dd49dac39bbEdimax Technology EW-7438RPn-v3 Mini version 1.27 suffers from a remote code execution vulnerability.
a7b3bfe170399993d098377d06aacc8404570738458254729c765989042ee70fTVT NVMS 1000 suffers from a directory traversal vulnerability.
2923a9669c7e61abeb52bfe3a242caed49ec5d9e3c54eb57d7fc565fcc5534ecWSO2 API Manager Carbon interface version 3.0.0 suffers from a persistent cross site scripting vulnerability.
aa7fe84a39710ecdeda7d8dfb55d243843508a741f578add287e13b050422879Red Hat Security Advisory 2020-1428-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 20.0.0.4 serves as a replacement for Open Liberty 20.0.0.3 and includes security fixes, bug fixes, and enhancements.
6b5763555c8cdd2aba599aac4c65dbb22c8960d1b64b095c63d4984809807125Red Hat Security Advisory 2020-1429-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.7.0 ESR. Issues addressed include an out of bounds write vulnerability.
16026fa208024a43685d42335f19e6aae1c1bb078adf105a5e88c607a3349cccB64dec version 1.1.2 SEH buffer overflow exploit with egg hunter.
7955d2375744edf7165275ecd2c528841178f0aafb106101b7cddf1e97ece0c0WordPress Media Library Assistant plugin version 2.81 suffers from a local file inclusion vulnerability.
635cc70ebb74ad6e562d7979b7e15e3290d1009789ac02bb3abfb9943b4d1e6bWSO2 API Manager Carbon interface version 3.0.0 suffers from an arbitrary file deletion vulnerability.
2b9b810bcab9926a9fe770d2842a2bf6de7fa510bc894f74a4a32d52be1fe93dHuawei HG630 2 Router suffers from an authentication bypass vulnerability.
5116c765f399f1ea10d41bb253e734313f0191f75f3cd2468e28f6608140f954Webtateas version 2.0 suffers from an arbitrary file read vulnerability.
ae7107b0b4c741002ed550d8be0ae94499e6e74062a734b7a9422c986e82c018
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed