ZDI-23-1754: Delta Electronics InfraSuite Device Master Device-DataCollect Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics InfraSuite Device Master. Authentication is not required to exploit this...
ZDI-23-1755: Delta Electronics InfraSuite Device Master RunScript Exposed Dangerous Method Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics InfraSuite Device Master. Authentication is not required to exploit this...
ZDI-23-1756: Delta Electronics InfraSuite Device Master PlayWaveFile Directory Traversal Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Electronics InfraSuite Device Master. Authentication is not required to exploit this...
DSA-5569-1 chromium – security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. https://security-tracker.debian.org/tracker/DSA-5569-1 Read More
chromium-119.0.6045.199-1.fc37
FEDORA-2023-ceaa6b19c1 Packages in this update: chromium-119.0.6045.199-1.fc37 Update description: update to 119.0.6045.199, upstream security release High CVE-2023-6345: Integer overflow in Skia High CVE-2023-6346: Use after free...
chromium-119.0.6045.199-1.fc38
FEDORA-2023-4e555aedeb Packages in this update: chromium-119.0.6045.199-1.fc38 Update description: update to 119.0.6045.199, upstream security release High CVE-2023-6345: Integer overflow in Skia High CVE-2023-6347: Use after free...
chromium-119.0.6045.199-1.fc39
FEDORA-2023-145f259a77 Packages in this update: chromium-119.0.6045.199-1.fc39 Update description: update to 119.0.6045.199, upstream security release High CVE-2023-6348: Type Confusion in Spellcheck High CVE-2023-6347: Use after free...
USN-6528-1: OpenJDK 8 vulnerabilities
It was discovered that the HotSpot VM implementation in OpenJDK did not properly validate bytecode blocks in certain situations. An attacker could possibly use this...
USN-6527-1: OpenJDK vulnerabilities
Carter Kozak discovered that OpenJDK, when compiling with AVX-512 instruction support enabled, could produce code that resulted in memory corruption in certain situations. An attacker...
Okta: Breach Affected All Customer Support Users
When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta...