![]() ![]() ![]() ![]() □ CVE-2023-37186C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference in ndlz/ndlz8x8.c via a NULL pointer to 07:24:32 □ CVE-2023-37188C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_rate_decompress at 07:24:33 An attacker can overflow the cookie threshold, making an IPsec connection 07:24:37 The identifier of this vulnerability is 07:24:38 The exploit has been disclosed to the public and may be used. ![]() It is possible to launch the attack remotely. The manipulation of the argument fdate leads to sql injection. Affected is an unknown function of the file /admin/bwdates-report-details.php. □ CVE-2023-7100A vulnerability, which was classified as critical, was found in PHPGurukul Restaurant Table Booking System 1.0. clientLogin deserializes Java objects without authentication, leading to command execution on the 08:24:32 □ CVE-2022-34268An issue was discovered in RWS WorldServer before 11.7.3. □ CVE-2023-36486The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user by uploading a workflow definition file with a malicious 08:24:33 Command injection in the traceroute feature of the administration console allows users with admin privileges to execute arbitrary commands as 08:24:38 □ CVE-2023-49226An issue was discovered in Peplink Balance Two before 8.4.0. allows SQL Injection via a first name, search string, or email 08:24:39 □ CVE-2023-38321OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string parameter and 08:24:44 ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |