This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
duktape-2.2.0-6.el8
Backport upstream fix for CVE-2021-46322.
caddy-2.4.6-6.el9
Backport of upstream fix for CVE-2022-29718.
caddy-2.4.6-6.fc36
Backport of upstream fix for CVE-2022-29718.
The Qualys Research Labs reported an authorization bypass
(CVE-2022-41974)
and a symlink attack
(CVE-2022-41973)
in multipath-tools, a set of tools to drive the Device Mapper multipathing
driver, which may result in local privilege escalation.
Password management company LastPass, which was hit by two data breaches last year, has revealed that data exfiltrated during the first intrusion, discovered in August, was used to target the personal home computer of one of its devops engineers and launch a second successful cyberatttack, detected in November.
The threat actor infected the home computer with a keylogger, which recorded information that enabled a cyberattack that exfiltrated sensitive information from the company’s AWS cloud storage servers, LastPass said in a cybersecurity incident update Monday.
libtpms-0.9.6-1.fc36
Build of libtpms 0.9.6 with fixes for CVE-2023-1017 & CVE-2023-1018
libtpms-0.9.6-1.fc37
Build of libtpms 0.9.6 with fixes for CVE-2023-1017 & CVE-2023-1018
libtpms-0.9.6-1.fc38
Build of libtpms 0.9.6 with fixes for CVE-2023-1017 & CVE-2023-1018
