ZDI-23-852: (Pwn2Own) Western Digital MyCloud PR4100 account_mgr Command Injection Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Western Digital MyCloud PR4100 NAS devices. Authentication is not required to exploit...
ZDI-23-853: Sante DICOM Viewer Pro DCM File Parsing Use-After-Free Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability...
ZDI-23-854: Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability...
ZDI-23-855: Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability...
ZDI-23-856: Sante DICOM Viewer Pro JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability...
Smashing Security podcast #325: Rick Astley and the little birdie scam
Australia's signal intelligence agency calls upon an Eighties popstar to fight terrorism, and a simple act of kindness leads to a woman being scammed for...
mariadb-10.5.20-1.fc38
FEDORA-2023-381f23a0ae Packages in this update: mariadb-10.5.20-1.fc38 Update description: MariaDB 10.5.20 Release notes: https://mariadb.com/kb/en/mariadb-10-5-20-release-notes/ Read More
mariadb-10.5.20-1.fc37
FEDORA-2023-b4ff407364 Packages in this update: mariadb-10.5.20-1.fc37 Update description: MariaDB 10.5.20 Release notes: https://mariadb.com/kb/en/mariadb-10-5-20-release-notes/ Read More
Defense in depth — the Microsoft way (part 85): escalation of privilege plus remote code execution with HVCISCAN.exe
Posted by Stefan Kanthak on Jun 07 Hi @ll, about a month ago Microsoft published HVCIScan-{amd,arm}64.exe, a "Tool to check devices for compatibility with memory...
LPE and RCE in RenderDoc: CVE-2023-33865, CVE-2023-33864, CVE-2023-33863
Posted by Qualys Security Advisory via Fulldisclosure on Jun 07 Qualys Security Advisory LPE and RCE in RenderDoc: CVE-2023-33865, CVE-2023-33864, CVE-2023-33863 ======================================================================== Contents ======================================================================== Summary...