More Stories
botan2-2.19.3-1.el9
FEDORA-EPEL-2022-8f2df2e1e2 Packages in this update: botan2-2.19.3-1.el9 Update description: Bump botan2 to 2.19.3 (RHBZ 2143417, 2143418) Read More
CVE-2022-24187
The user_id and device_id on the Ourphoto App version 1.4.1 /device/* end-points both suffer from insecure direct object reference vulnerabilities....
CVE-2022-24188
The /device/signin end-point for the Ourphoto App version 1.4.1 discloses clear-text password information for functionality within the picture frame devices....
CVE-2022-24189
The user_token authorization header on the Ourphoto App version 1.4.1 /apiv1/* end-points is not implemented properly. Removing the value causes...
CVE-2022-24190
The /device/acceptBind end-point for Ourphoto App version 1.4.1 does not require authentication or authorization. The user_token header is not implemented...
USN-5746-1: HarfBuzz vulnerability
Behzad Najjarpour Jabbari discovered that HarfBuzz incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause...