Category: Advisories

It was discovered that the Spring Framework incorrectly handled web requests via data binding. An attacker could possibly use this issue to achieve remote code...

It was discovered that ImageMagick incorrectly handled certain malformed files. If a user or automated system were tricked into opening a specially crafted file, an...

FEDORA-2024-1a2f1733ad Packages in this update: python-sql-1.5.2-3.fc41 Update description: update to 1.5.2 Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche. Authentication is required to exploit this vulnerability. The ZDI has...

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft PC Manager. An attacker must first obtain the ability to execute low-privileged...

Posted by Egidio Romano on Dec 16 --------------------------------------------------------------------------- GFI Kerio Control <= 9.4.5 Multiple HTTP Response Splitting Vulnerabilities --------------------------------------------------------------------------- [-] Software Links: https://gfi.ai/products-and-solutions/network-security-solutions/keriocontrol http://download.kerio.com [-]...

Posted by malvuln on Dec 16 This next generation version dumps process memory of the targeted Malware prior to termination The process memory dump file...

What is the Vulnerability?An unrestricted file upload and download vulnerability (CVE-2024-50623) that could lead to remote code execution, affecting multiple Cleo products is being actively...

A buffer overflow was discovered in the vhost code of DPDK, a set of libraries for fast packet processing, which could result in denial of...

A security issue was discovered in the Linux kernel. An attacker could possibly use this to compromise the system. This update corrects flaws in the...