Ubuntu Security Notice 6687-1 - It was discovered that AccountsService called a helper incorrectly when performing password change operations. A local attacker could possibly use this issue to obtain encrypted passwords.
5935f51374bbedbe8e20bc4619732fb163c84254783cd4b5e539b7512d9bce32Debian Linux Security Advisory 5638-1 - It was discovered that the uv_getaddrinfo() function in libuv, an asynchronous event notification library, incorrectly truncated certain hostnames, which may result in bypass of security measures on internal APIs or SSRF attacks.
8a07ccb73b022376fe2ad526d9e79f96a2d1684fb96135ae73b42313547393c9Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
ca192ac67411b07ec8421d579b1f16c038299ff727a53d739403b729817bc2e7This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
490426f766d82a2763fcacd8d83ea3d70798750c7bd2aff2e57dc5660f773ffdNumbas versions prior to 7.3 suffer from a remote code execution vulnerability.
e0195e7e21a5182d8c8267f498108059037a2956810cf1cbc5880c33a370d809Sitecore version 8.2 suffers from a remote code execution vulnerability.
bb3d70849315ed8ba0c15b23acace7c5306c6747aad0652046ed829b77617644Adobe ColdFusion versions 2018,15 and below and versions 2021,5 and below suffer from an arbitrary file read vulnerability.
13a86908b0179fbc89ec6afba2a1ff200d2d4e963318afddcb2f12582423ca11Backdoor.Win32.Beastdoor.oq malware suffers from a remote command execution vulnerability.
72378386669ae9759edcef742e72bbceb8bebb4fef342a5fb8f58cf8290dd75aWordPress Duplicator plugin versions prior to 1.5.7.1 suffer from an unauthenticated sensitive data exposure vulnerability that can lead to account takeover.
14448881a372208b90c6168cf1256892d8c4d6b6d3e1676dcb7526051d81afc8RUPPEINVOICE version 1.0 suffers from a remote SQL injection vulnerability.
2701252b167dc0643eea0b84f5eb8444d2b066ddad3f7542ce0b126ade721018WordPress Hide My WP plugin versions 6.2.9 and below suffer from an unauthenticated remote SQL injection vulnerability.
33f5fa64f551c4a29625c510ca5f542be8dc039807964ef77f7aca808db3a3bfDataCube3 version 1.0 suffers from a remote shell upload vulnerability.
a5ca9dcfc24b6607634b3ccc91b9b2cf12ca8ba0a229101f9e74e14975448d9aAkaunting versions 3.1.3 and below suffer from a remote command execution vulnerability.
8d4933e0c1b3efde90f0ca90ae286fa4036671aa25168b79c0dd977756a0f6b1Hitachi NAS SMU Backup and Restore versions prior to 14.8.7825.01 suffer from an insecure direct object reference vulnerability.
3cfc580881d74cff8068b880201aeb809919ad954eac8b5a50b277411adaa510There exists a buffer overflow vulnerability in the TP-Link TL-WR740 router that can allow an attacker to crash the web server running on the router by sending a crafted request.
1ffb14b7cc151eb147dfc888b64259bdf2c04d3a6a304b037e87c8e84424acb5
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed