Red Hat Security Advisory 2022-1702-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.0 ESR. Issues addressed include a bypass vulnerability.
3982174c71d30f0db5bb7f7d3ef83158b4804bc28a358964575e2dbcaddd5772Red Hat Security Advisory 2022-1704-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.9.0 ESR. Issues addressed include a bypass vulnerability.
bce6087615565bbf4671d8ed8038a00992d0a52f6a2637888b47f4b8d7a4e9aeNet-Worm.Win32.Kibuv.c malware suffers from an authentication bypass vulnerability.
19abd12c98e17d2a4909a274c49ee28ec3e233210634f6b76fb31712690429d8Gitlab versions 14.9 prior to 14.9.2, 14.8 prior to 14.8.5, and 14.7 prior to 14.7.7 suffer from a bypass vulnerability due to having set a hardcoded password for accounts registered using an OmniAuth provider.
b9871a137c86a7af7a3f259af24481816299cde62d5eef695abcb78150bb320fBackdoor.Win32.GateHell.21 malware suffers from an authentication bypass vulnerability.
3190bfb5d5a0c4124a88bc50873589e7242c550aaf54cc63e175b599737268efBackdoor.Win32.NinjaSpy.c malware suffers from an authentication bypass vulnerability.
041ec29b699be65bde2accb9306accd03701764098f6d10f41ef363be3214f55Backdoor.Win32.MotivFTP.12 malware suffers from an authentication bypass vulnerability.
e993e5fd524fee01d252b9209f7259f7ea9e7d86460076371e0808a99131d1abRed Hat Security Advisory 2022-1248-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.7.48. Issues addressed include a bypass vulnerability.
8faa35073c4259895c452a9fd34a62acf47daf1b345d86827aa7d20acbc26a58WordPress SiteGround Security plugin versions 1.2.5 and below suffer from an authentication bypass vulnerability as well as an authorization weakness in versions 1.2.4 and below.
39002aacdb45a842886c5499bb9ff463ad56fdba64a4bbe185d1961315404f6bBackdoor.Win32.XLog.21 malware suffers from an authentication bypass vulnerability due to a race condition.
ffd576924691fe767d1107b326422e967a2a992daabe4af6ca3325b4dc80dee0SAP Information System version 1.0.0 suffers from an improper authentication vulnerability that allows a malicious user to create an administrative account without needing to authenticate. The POST request is sent to the /SAP_Information_System/controllers/add_admin.php endpoint. The problem occurs due to lack of session verification in the request.
81b2d35c550ef4f8db3fd0aac42c15232a707b20d75b5eeabeefd52e176de1e6Multi Store Inventory Management System version 1.0 suffers from an account takeover vulnerability due to missing authorization controls.
1a2fb03891ca04bd48c2510e8d97fe8266c1a84eb9915f07b8ce0f735d80083cRoxy File Manager version 1.4.5 proof of concept exploit for a PHP file upload restriction bypass vulnerability.
56429affeb38a91070ee24b0aaf512970594ce033504501832983da83e9dea5aWhen the filter_var function is used in conjunction with the flags FILTER_VALIDATE_DOMAIN and FILTER_FLAG_HOSTNAME, there is a vulnerability in PHP that allows the filter to be bypassed. A patch has been included by the researcher as the PHP security team seems to have ignored this concern.
adddea024dbdd005a547c113193969e21a6c422c65e5611f207efd46bf8ae635Fingerprint Attendance version 1.0 allows for an arbitrary password reset of any user.
349d72455afa61c19576dd3b35d2b351fb9e9242b3dc49747aede103705ebd0bRed Hat Security Advisory 2022-1025-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.10.6. Issues addressed include a bypass vulnerability.
6e84e382e764ab5ade24049c913680df85b836faabc19edaef125edc33a1b5ccOnline Sports Complex Booking System version 1.0 suffers from an account takeover vulnerability due to missing authorization controls.
a18fa028a2df9ed56cfc98dd85b49189c95b2eecbf3fc80170c5430f78db9060ImpressCMS versions 1.4.2 and below suffer from an authentication bypass vulnerability.
d8dfe7df740ddc2041569cf9735ee4180779ccae9c55e66d12ed7119dce09379Red Hat Security Advisory 2022-0856-01 - Red Hat Advanced Cluster Management for Kubernetes 2.2.11 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console — with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which provide security fixes, bug fixes and container upgrades. Issues addressed include a bypass vulnerability.
9d0db7328025daa790592d6c412ef4759f15b7dc4e7abefad1619ea7ee5f214bSiemens S7-1200 versions 4.5 and below have an unauthenticated CPU start/stop command vulnerability.
88f2803fc2e5b53b6f08e265637da1495e7da749c19ccbe44164c5f1225850e9Red Hat Security Advisory 2022-0535-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.6.0. Issues addressed include a bypass vulnerability.
852a638745fb2e86a164a906c1074fc4b19da52a71e4f4411488082d9a69f6afRed Hat Security Advisory 2022-0539-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.6.0. Issues addressed include a bypass vulnerability.
ba9495f2dab30183b610811e6b04c10ce0d9376a1f2cc4bfe3910d845db182f2Google Play Protect version 22.4.25 suffers from a detection bypass vulnerability.
65c5ef0978da12101cbdabe6f1c008ebba6d15b8b501829ea7641514839a9901Red Hat Security Advisory 2022-0536-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.6.0. Issues addressed include a bypass vulnerability.
c506da3cba1432b049ed98f1ac34ebd9c08ba152406159c8c9d9f1cdf98a86a6Red Hat Security Advisory 2022-0537-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.6.0. Issues addressed include a bypass vulnerability.
141e69f2c6bc3528c29410796cd6dad872644dc806171c4fde08c81eafe1176f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed