SEC Consult SA-20230829-0 :: Reflected Cross-Site Scripting (XSS) in PTC - Codebeamer (ALM Solution)

Read Time:20 Second

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Sep 18

SEC Consult Vulnerability Lab Security Advisory < 20230829-0 >
=======================================================================
title: Reflected Cross-Site Scripting (XSS)
product: PTC – Codebeamer (ALM Solution)
vulnerable version: <=22.10-SP7, <=22.04-SP5, <=21.09-SP13
fixed version: >=22.10-SP8, >=22.04-SP6, >=21.09-SP14
CVE number: CVE-2023-4296…

libcoap-4.3.5-6.fc41

FEDORA-2024-9c7bbee0f0 Packages in this update: libcoap-4.3.5-6.fc41 Update description: Update to 4.3.5 GA Read More

September 7, 2024

chromium-128.0.6613.119-1.fc39

FEDORA-2024-1bd7266df0 Packages in this update: chromium-128.0.6613.119-1.fc39 Update description: update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970:...

September 7, 2024

chromium-128.0.6613.119-1.el8

FEDORA-EPEL-2024-c15e47ae56 Packages in this update: chromium-128.0.6613.119-1.el8 Update description: update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970:...

September 7, 2024

chromium-128.0.6613.119-1.el9

FEDORA-EPEL-2024-7f86a25567 Packages in this update: chromium-128.0.6613.119-1.el9 Update description: update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970:...

September 7, 2024

chromium-128.0.6613.119-1.fc41

FEDORA-2024-e109b67926 Packages in this update: chromium-128.0.6613.119-1.fc41 Update description: update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970:...

September 7, 2024

chromium-128.0.6613.119-1.fc40

FEDORA-2024-ee42af5a22 Packages in this update: chromium-128.0.6613.119-1.fc40 Update description: update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970:...

September 7, 2024

Live Video of Promachoteuthis Squid

YubiKey Side-Channel Attack

Spyware Vendors’ Nebulous Ecosystem Helps Them Evade Sanctions

US and Allies Accuse Russian Military of Destructive Cyber-Attacks

PyPI Revival Hijack Puts Thousands of Applications at Risk

Security Budgets Come Under Pressure as “Hypergrowth” Ends

Cicada ransomware – what you need to know

UK Signs Council of Europe AI Convention

Cisco Warns of Critical Vulnerabilities in Smart Licensing Utility

SEC Consult SA-20230829-0 :: Reflected Cross-Site Scripting (XSS) in PTC – Codebeamer (ALM Solution)

libcoap-4.3.5-6.fc41

chromium-128.0.6613.119-1.fc39

chromium-128.0.6613.119-1.el8

chromium-128.0.6613.119-1.el9

chromium-128.0.6613.119-1.fc41

chromium-128.0.6613.119-1.fc40