roundcubemail-1.6.5-1.fc38
FEDORA-2023-0fd9865145 Packages in this update: roundcubemail-1.6.5-1.fc38 Update description: Release 1.6.5 Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE (#9171) Fix duplicated Inbox folder on...
roundcubemail-1.6.5-1.fc37
FEDORA-2023-70578c5599 Packages in this update: roundcubemail-1.6.5-1.fc37 Update description: Release 1.6.5 Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE (#9171) Fix duplicated Inbox folder on...
roundcubemail-1.5.6-1.el9
FEDORA-EPEL-2023-ffe5c0ac79 Packages in this update: roundcubemail-1.5.6-1.el9 Update description: Release 1.5.6 Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download Read More
ZDI-23-1588: Microsoft Azure US Accelarators Synapse SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on Microsoft Azure. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS...
ZDI-23-1589: VMware Workstation UHCI Uninitialized Variable Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged...
ZDI-23-1590: VMware vCenter Server Appliance DCE/RPC Protocol Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of VMware vCenter Server Appliance. Authentication is not required to exploit this vulnerability....
ZDI-23-1582: Tenable Nessus Link Following Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Tenable Nessus. An attacker must first obtain the ability to execute low-privileged code...
ZDI-23-1583: Google Chromium Vulkan SwiftShader Double Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Google Chromium-based browsers. User interaction is required to exploit this vulnerability in...
ZDI-23-1584: SolarWinds Orion Platform BlacklistedFilesChecker Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Orion Platform. Authentication is required to exploit this vulnerability. The ZDI...
ZDI-23-1585: SolarWinds Network Configuration Manager ExportConfigs Directory Traversal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Configuration Manager. Authentication is required to exploit this vulnerability. The...