Monthly Archives: July 2023

Advisories

SEC Consult Vulnerability Lab Whitepaper: Everyone Knows SAP®, Everyone Uses SAP, Everyone Uses RFC, No One Knows RFC: From RFC to RCE 16 Years Later

Read Time:15 Second

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jul 07

SEC Consult Vulnerability Lab Whitepaper < 20230629-0 >
=======================================================================
Title: Everyone Knows SAP®, Everyone Uses SAP,
Everyone Uses RFC, No One Knows RFC:
From RFC to RCE 16 Years Later
Researcher: Fabian Hagg (Office Vienna)
SEC Consult Vulnerability Lab…

Read More

Advisories

SEC Consult SA-20230628-0 :: Stored XSS & Privilege Escalation in Boomerang Parental Control App

Read Time:18 Second

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jul 07

SEC Consult Vulnerability Lab Security Advisory < 20230628-0 >
=======================================================================
title: Stored XSS & Privilege Escalation
product: Boomerang Parental Control App
vulnerable version: <13.83
fixed version: >=13.83 (only issue 1), rest not fixed
CVE number: CVE-2023-36620, CVE-2023-36621
impact: High…

Read More

Advisories

SEC Consult SA-20230627-0 :: Multiple high risk vulnerabilities in ILIAS eLearning platform

Read Time:15 Second

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jul 07

SEC Consult Vulnerability Lab Security Advisory < 20230627-0 >
=======================================================================
title: Multiple high risk vulnerabilities
product: ILIAS eLearning platform
vulnerable version: see section “Vulnerable version” below
fixed version: see section “Solution” below
CVE number: –
impact: High
homepage:…

Read More

Advisories

ServiceNow Account Takeover to Full Admin Compromise

Read Time:18 Second

Posted by Luke Symons on Jul 07

1. INFORMATION

————–

[+] CVE : CVE-2022-43684

[+] Title : Insecure Access Control To Full Admin Compromise

[+] Vendor : ServiceNow

[+] Publication date : June 2023

[+] Credits : Luke Symons, Tony Wu, Eldar Marcussen, Gareth
Phillips, Jeff Thomas, Nadeem Salim, and Stephen Bradshaw.

2. AFFECTED VERSIONS

——————–

* Quebec prior to Patch 10 Hot Fix 8b

* Rome prior to Patch 10 Hot…

Read More

Advisories

APPLE-SA-2023-06-21-8 watchOS 8.8.1

Read Time:26 Second

Posted by Apple Product Security via Fulldisclosure on Jul 07

APPLE-SA-2023-06-21-8 watchOS 8.8.1

watchOS 8.8.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213808.

Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.

Kernel
Available for: Apple Watch Series 3, Series 4, Series 5, Series 6,
Series 7, and SE
Impact: An app may be able to…

Read More

Advisories

APPLE-SA-2023-06-21-7 watchOS 9.5.2

Read Time:25 Second

Posted by Apple Product Security via Fulldisclosure on Jul 07

APPLE-SA-2023-06-21-7 watchOS 9.5.2

watchOS 9.5.2 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213812.

Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.

Kernel
Available for: Apple Watch Series 4 and later
Impact: An app may be able to execute arbitrary code with kernel…

Read More

Advisories

APPLE-SA-2023-06-21-6 macOS Big Sur 11.7.8

Read Time:26 Second

Posted by Apple Product Security via Fulldisclosure on Jul 07

APPLE-SA-2023-06-21-6 macOS Big Sur 11.7.8

macOS Big Sur 11.7.8 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213809.

Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.

Kernel
Available for: macOS Big Sur
Impact: An app may be able to execute arbitrary code with kernel
privileges….

Read More

Advisories

APPLE-SA-2023-06-21-5 macOS Monterey 12.6.7

Read Time:25 Second

Posted by Apple Product Security via Fulldisclosure on Jul 07

APPLE-SA-2023-06-21-5 macOS Monterey 12.6.7

macOS Monterey 12.6.7 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/kb/HT213810.

Apple maintains a Security Updates page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.

Kernel
Available for: macOS Monterey
Impact: An app may be able to execute arbitrary code with kernel…

Read More

Advisories

SQLi – Faculty Evaluation System

Read Time:21 Second

Posted by Andrey Stoykov on Jul 07

# Exploit Title: Faculty Evaluation System – SQL Injection
# Date: 07/2023
# Exploit Author: Andrey Stoykov
# Version: 1.0
# Tested on: Windows Server 2022

SQLi #1

File: edit_evaluation

Line #4
$qry = $conn->query(“SELECT * FROM ratings where id =
“.$_GET[‘id’])->fetch_array();
[…]

SQLi #2

File: view_faculty.php

Line #4

// Add “id” parameter after “view_faculty” parameter then add equals…

Read More

Advisories

Citrix Gateway & Cloud MFA – Insufficient Session Validation Vulnerability

Read Time:19 Second

Posted by info () esec-service de on Jul 07

Document Title:
===============
Citrix Gateway&Cloud MFA – Insufficient Session Validation Vulnerability

References (Source):
====================
https://www.vulnerability-lab.com/get_content.php?id=2324

Vulnerability
Magazine:https://www.vulnerability-db.com/?q=articles/2023/07/03/citrix-gateway-cloud-mfa-insufficient-session-validation-vulnerability

Security Video: (Cloud)
https://www.youtube.com/watch?v=vObgOpGpCSM

Security Video:…

Read More