This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adtran SR400ac routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
Monthly Archives: July 2023
CVE-2020-22623
Directory traversal vulnerability in Jinfornet Jreport 15.6 allows unauthenticated attackers to gain sensitive information.
CVE-2022-31200
Atmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field.
Heart monitor manufacturer hit by cyberattack, takes systems offline
CardioComm, a Canadian company which provides heart-monitoring technology to hospitals and consumers, has revealed that it has been forced to take its systems offline following a cyberattack.
Read more in my article on the Hot for Security blog.
apptainer-1.2.2-1.el9
FEDORA-EPEL-2023-6237ba7467
Packages in this update:
apptainer-1.2.2-1.el9
Update description:
Update to upstream 1.2.2
Update to upstream 1.2.1. Fix for CVE-2023-38496.
Update to upstream 1.2.0
Update to upstream 1.2.0-rc.2
Update to upstream 1.2.0-rc.1
apptainer-1.2.2-1.el7
FEDORA-EPEL-2023-72bc7cd989
Packages in this update:
apptainer-1.2.2-1.el7
Update description:
Update to upstream 1.2.2
Update to upstream 1.2.1. Fix for CVE-2023-38496.
Update to upstream 1.2.0
Update to upstream 1.2.0-rc.2
Update to upstream 1.2.0-rc.1
apptainer-1.2.2-1.el8
FEDORA-EPEL-2023-0e7cdf6123
Packages in this update:
apptainer-1.2.2-1.el8
Update description:
Update to upstream 1.2.2
Update to upstream 1.2.1. Fix for CVE-2023-38496.
Update to upstream 1.2.0
Update to upstream 1.2.0-rc.2
Update to upstream 1.2.0-rc.1
CVE-2021-36580
Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter.
amanda-3.5.4-3.fc37
FEDORA-2023-566e354e4a
Packages in this update:
amanda-3.5.4-3.fc37
Update description:
Update to new upstream version 3.5.4. This brings a fix for a security issue, CVE-2023-30577.
This update also fixes the manual pages.
amanda-3.5.4-3.fc38
FEDORA-2023-4db1d56125
Packages in this update:
amanda-3.5.4-3.fc38
Update description:
Update to new upstream version 3.5.4. This brings a fix for a security issue, CVE-2023-30577.
This update also fixes the manual pages.