This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
Yearly Archives: 2022
[R1] Nessus Network Monitor 6.0.1 Fixes Multiple Third-party Vulnerabilities
[R1] Nessus Network Monitor 6.0.1 Fixes Multiple Third-party Vulnerabilities
Arnie Cabral
Mon, 05/09/2022 – 17:04
Out of caution and in line with best practice, Tenable opted to upgrade the bundled components to address the potential impact of these issues. Nessus Network Monitor 6.0.1 updates OpenSSL to version 1.1.1n and jQueryUI to 1.13.0 to address the identified vulnerabilities.
kernel-5.17.6-100.fc34 kernel-headers-5.17.6-100.fc34 kernel-tools-5.17.6-100.fc34
FEDORA-2022-a0f65397a3
Packages in this update:
kernel-5.17.6-100.fc34
kernel-headers-5.17.6-100.fc34
kernel-tools-5.17.6-100.fc34
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
kernel-5.17.6-300.fc36 kernel-headers-5.17.6-300.fc36 kernel-tools-5.17.6-300.fc36
FEDORA-2022-e9378a3573
Packages in this update:
kernel-5.17.6-300.fc36
kernel-headers-5.17.6-300.fc36
kernel-tools-5.17.6-300.fc36
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
kernel-5.17.6-200.fc35 kernel-headers-5.17.6-200.fc35 kernel-tools-5.17.6-200.fc35
FEDORA-2022-fd85148be2
Packages in this update:
kernel-5.17.6-200.fc35
kernel-headers-5.17.6-200.fc35
kernel-tools-5.17.6-200.fc35
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
vim-8.2.4927-1.fc34
FEDORA-2022-8df66cdbef
Packages in this update:
vim-8.2.4927-1.fc34
Update description:
patchlevel 4927
Security fixes for CVE-2022-1616, CVE-2022-1619, CVE-2022-1619
vim-8.2.4927-1.fc35
FEDORA-2022-f0db3943d9
Packages in this update:
vim-8.2.4927-1.fc35
Update description:
patchlevel 4927
Security fixes for CVE-2022-1616, CVE-2022-1619, CVE-2022-1619
Hackers Replace Russian TV Schedules During ‘Victory Day’ With Anti-War Messages
The hack affected several major networks, including Channel One, Rossiya-1 and NTV-Plus
CVE-2021-20479
IBM Cloud Pak System 2.3.0 through 2.3.3.3 Interim Fix 1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197498.
CVE-2019-25060
The WPGraphQL WordPress plugin before 0.3.5 doesn’t properly restrict access to information about other users’ roles on the affected site. Because of this, a remote attacker could forge a GraphQL query to retrieve the account roles of every user on the site.