Ubuntu Security Notice 4896-2 - USN-4896-1 fixed a vulnerability in lxml. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that lxml incorrectly handled certain HTML attributes. A remote attacker could possibly use this issue to perform cross-site scripting attacks. Various other issues were also addressed.
f57a928b1fe28108b633e710e90b344d289d445878c2c1a598eb1bd819ee1877
Tableau Server versions 2019.4-2019.4.17, 2020.1-2020.1.13, 2020.2-2020.2.10, 2020.3-2020.3.6, and 2020.4-2020.4.2 suffer from an open redirection vulnerability.
f94f4c21d9dba1d0c7ee95cb5c610a63129a66717cb1017f3f7f1f15599bb7e1
Backdoor.Win32.Small.n malware suffers from a code execution vulnerability.
8a440c2ab5affa0e5f354525f16f07ba82dceea365eeff59d37a5cc412e50643
DMA Radius Manager version 4.4.0 suffers from a cross site request forgery vulnerability.
25570c0aa698b906c3b618a0ca6984fc513a5ae0f965072e74f4f0817fc6e33f
Check Point Identity Agent versions prior to R81.018.0000 allow for an arbitrary file overwrite action with escalated privileges.
f4c73f8abefebd7995fdb1ef77d2a3230b4f827da8a97d588028442b118ace98
Red Hat Security Advisory 2021-1135-01 - Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Issues addressed include a HTTP request smuggling vulnerability.
ab31b4fa3c6f85d1e7750704ae3451dd89f8687d6cc65661928f5ca2cae9a82b
The D-Link DSL-320B-D1 ADSL modem suffers from multiple pre-authentication stack buffer overflow vulnerabilities.
b1c0184f2d450264d2874f3fd564771a3463e28bd75b22be6bbffb5eb4e6e3bb
Backdoor.Win32.Hupigon.das malware has an unauthenticated open proxy functionality.
1152cc89af19d578c0a54240ee87d212b4538fd4567703bcbf10048dc1670c7d
Linux kernel version 5.4 BleedingTooth bluetooth zero-click proof of concept remote code execution exploit.
5108c67d6fbb60138d1ac3f7b89fb015439b9afd13c3fb0e06991d6195d956ac
Red Hat Security Advisory 2021-1129-01 - Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools. This advisory is intended to use with container images for Red Hat 3scale API Management 2.10.0.
080546fe1bfc5e278c82d7414e75a36e9df9b89d827f78304ae6390c7b762f52
Trojan.Win32.Hotkeychick.d malware suffers from an insecure permissions vulnerability.
1a242a312a7e48f59e0df6807efc87c1c5fc4046d9afbd6cc618d92ca6b6df3a
Composr version 10.0.36 suffers from a remote shell upload vulnerability.
80b1ea844fa2c436b17c1b458e794fb0aba532fdb83f89809f4157e5c419aacc
Trojan-Downloader.Win32.Genome.qiw malware suffers from an insecure permissions vulnerability.
438438a6449ddc2b15119b9b26eb65081663cd10fa9f1f598aabeedd68158f92
Trojan-Downloader.Win32.Genome.omht malware suffers from an insecure permissions vulnerability.
4a0f6f4f0e525367b324e98066f8db2493a4e30ceaf46a16696d26d5af3561b1
Trojan.Win32.Hosts2.yqf malware suffers from an insecure permissions vulnerability.
422e26ffe53792d59d29f4be66be865b986bc5245b74606c4a0243474a245b4d
CMSimple version 5.2 suffers from a persistent cross site scripting vulnerability.
d18881acd229a2480e0ed28b3b47a69a6fea346d09b7022b220a880951971973