Red Hat Security Advisory 2021-2791-01 - The RPM Package Manager is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Issues addressed include a bypass vulnerability.
eb9b2afc9b791d6dbf14cdad84c5d2a7Backdoor.Win32.Surila.j malware suffers from an authentication bypass vulnerability.
acfb911600bfd151ff8288518744025dRed Hat Security Advisory 2021-2574-01 - The RPM Package Manager is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Issues addressed include a bypass vulnerability.
1da631d27e22811e7c1ce993385ef2c9Personnel Record Management System version 1.0 unauthenticated administrator addition exploit that also adds a stored cross site scripting payload.
7830494b80453a138becbe2ae78fc9d3Huawei DG8045 ships with a default password that is the last 8 character of the device's serial number listed on the back.
a2bc8233cbc356dd39974accb8f25338Backdoor.Win32.ReverseTrojan.200 malware suffers from an authentication bypass vulnerability.
d2b4c0a1bc954a4816174b3c63e1635fThis ruby script is a 4-in-1 exploit that leverages shell upload, bypass, and information disclosure vulnerabilities in Monitorr version 1.7.6m.
5113f4119e78d0b0c1dcb46bad362104OpenEMR version 5.0.1.3 suffers from an authentication bypass vulnerability.
0bfdd861dc16d07c1e19d41f3214b08bWoWonder Social Network Platform version 3.1 suffers from an authentication bypass vulnerability.
d2e9966896a9ad2896f017f6c8bae671Red Hat Security Advisory 2021-2235-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include a bypass vulnerability.
77051894d54adad2878c960511e90f5cSeveral IoT devices from the CHIYU Technology firm are vulnerable to a flaw that permits bypassing the telnet authentication process due to an overflow during the negotiation of the telnet protocol. Telnet authentication is bypassed by supplying a specially malformed request, and an attacker may force the remote telnet server to believe that the user has already authenticated. Several models are vulnerable, including BF-430, BF-431, BF-450M, and SEMAC with the most recent firmware versions.
97cff8513b3034f2b17e7eae72c11d7aRed Hat Security Advisory 2021-2085-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
9212bf11498d6800ac0df8f187a34d19Red Hat Security Advisory 2021-2061-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
998d14e9fc8856405feedc8caaa97bd3Red Hat Security Advisory 2021-2042-01 - Red Hat OpenShift Container Storage is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Container Storage is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. Issues addressed include a bypass vulnerability.
24814a9cd9c0da57f30805cfbd53ac24Red Hat Security Advisory 2021-1540-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
45f8a6b86179c32a2ad1df82357e7cd0Red Hat Security Advisory 2021-1538-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation. Issues addressed include a bypass vulnerability.
541335091cfbebdbe89c81eac3af0608Human Resource Information System version 1.0 suffers from an unauthenticated administrative account creation vulnerability.
41eb1d3fba6ea3d4ddbbc36358daf7adBackdoor.Win32.Agent.ggw malware suffers from a bypass vulnerability.
0d7159b801928d61b465f30c3e488973Whitepaper called Root Detection Bypass with frida-push and Objection for iOS and Android. Written in Turkish.
cf2857b86392f6fbfb8a1f549f8da9ecRed Hat Security Advisory 2021-1401-01 - This release of Red Hat Fuse 7.8.1 serves as a patch to Red Hat Fuse on Karaf and Red Hat Fuse on Spring Boot 2, and includes security fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a bypass vulnerability.
e41b4b3198bba1c32ce115c98a402373Discourse version 2.7.0 suffers from a 2FA bypass via a rate limiting bypass vulnerability.
4d6feb142f5716d8732281eb031dc70aCisco RV-series routers suffer from an authentication bypass vulnerability. The RV34X series are also affected by a command injection vulnerability in the sessionid cookie, when requesting the /upload endpoint. A combination of these issues would allow any person who is able to communicate with the web interface to run arbitrary system commands on the router as the www-data user. Vulnerable versions include RV16X/RV26X versions 1.0.01.02 and below and RV34X versions 1.0.03.20 and below.
c12d03c8d1125957763a439d71aa925eProject Expense Monitoring System version 1.0 suffers from an authentication bypass vulnerability that allows for administrative account creation.
5886a72c593de669cd120484467ffafdBackdoor.Win32.Kwak.12 malware suffers from a bypass vulnerability.
36ef9ee5d988d1ac724f3c5efc27ad6aDolibarr ERP/CRM version 11.0.4 authenticated file upload restrictions bypass exploit that achieves remote code execution.
fe74304105aaecf46ea3be88063bb592
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed