SEC Consult SA-20240522-0 :: Broken access control & API Information Exposure in 4BRO App

Read Time:17 Second

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 23

SEC Consult Vulnerability Lab Security Advisory < 20240522-0 >
=======================================================================
title: Broken access control & API Information Exposure
product: 4BRO App
vulnerable version: before 2024-04-17
fixed version: 2024-04-17
CVE number: –
impact: Critical
homepage: https://www.4bro.de
found: 2023-05-07…

Erlang/OTP RCE (CVE-2025-32433)

What is the Vulnerability? A critical SSH vulnerability has recently been identified in the Erlang/Open Telecom Platform (OTP). The vulnerability,...

April 22, 2025

digikam-8.6.0-4.fc40

FEDORA-2025-97687e7f68 Packages in this update: digikam-8.6.0-4.fc40 Update description: update internal Libraw to 2025/03/17 snapshot Read More

April 21, 2025

digikam-8.6.0-4.fc41

FEDORA-2025-5bbbb2df79 Packages in this update: digikam-8.6.0-4.fc41 Update description: update internal Libraw to 2025/03/17 snapshot Read More

April 21, 2025

digikam-8.6.0-4.fc42

FEDORA-2025-1c1e378468 Packages in this update: digikam-8.6.0-4.fc42 Update description: update internal Libraw to 2025/03/17 snapshot Read More

April 21, 2025

epiphany-47.5-1.fc41

FEDORA-2025-164c668d6a Packages in this update: epiphany-47.5-1.fc41 Update description: Update to 47.5, notably fixing CVE-2025-3839 Read More

April 21, 2025

epiphany-48.1-1.fc42

FEDORA-2025-efbe201596 Packages in this update: epiphany-48.1-1.fc42 Update description: Update to 48.1, notably fixing CVE-2025-3839 Read More

April 21, 2025

Whistleblower: DOGE Siphoned NLRB Case Data

Friday Squid Blogging: Live Colossal Squid Filmed

Midnight Blizzard Targets European Diplomats with Wine Tasting Phishing Lure

Age Verification Using Facial Scans

NTLM Hash Exploit Targets Poland and Romania Days After Patch

Senators Urge Cyber-Threat Sharing Law Extension Before Deadline

Identity Attacks Now Comprise a Third of Intrusions

Microsoft Thwarts $4bn in Fraud Attempts

CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension

SEC Consult SA-20240522-0 :: Broken access control & API Information Exposure in 4BRO App

Erlang/OTP RCE (CVE-2025-32433)

digikam-8.6.0-4.fc40

digikam-8.6.0-4.fc41

digikam-8.6.0-4.fc42

epiphany-47.5-1.fc41

epiphany-48.1-1.fc42