SEC Consult SA-20221110-0 :: HTML Injection in BMC Remedy ITSM-Suite
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Nov 15 SEC Consult Vulnerability Lab Security Advisory < 20221110-0 > ======================================================================= title: HTML Injection...
SEC Consult SA-20221109-0 :: Multiple Critical Vulnerabilities in Simmeth System GmbH Supplier manager (Lieferantenmanager)
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Nov 15 SEC Consult Vulnerability Lab Security Advisory < 20221109-0 > ======================================================================= title: Multiple Critical...
APPLE-SA-2022-11-09-2 macOS Ventura 13.0.1
Posted by Apple Product Security via Fulldisclosure on Nov 15 APPLE-SA-2022-11-09-2 macOS Ventura 13.0.1 macOS Ventura 13.0.1 addresses the following issues. Information about the security...
APPLE-SA-2022-11-09-1 iOS 16.1.1 and iPadOS 16.1.1
Posted by Apple Product Security via Fulldisclosure on Nov 15 APPLE-SA-2022-11-09-1 iOS 16.1.1 and iPadOS 16.1.1 iOS 16.1.1 and iPadOS 16.1.1 addresses the following issues....
Backdoor.Win32.RemServ.d / Unauthenticated Remote Command Execution
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/05a082d441d9cf365749c0e1eb904c85.txt Contact: malvuln13 () gmail com Media:...
HEUR:Trojan.MSIL.Agent.gen / Information Disclosure
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/bc2ccf92bea475f828dcdcb1c8f6cc92.txt Contact: malvuln13 () gmail com Media:...
Backdoor.Win32.Aphexdoor.LiteSock / Remote Stack Buffer Overflow (SEH)
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/2047ac6183da4dfb61d2562721ba0720.txt Contact: malvuln13 () gmail com Media:...
[CVE-2022-3747] BeCustom <= 1.0.5.2 Generic Cross-Site Request Forgery
Posted by Julien Ahrens (RCE Security) on Nov 15 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: BeCustom Wordpress Plugin Vendor URL: https://muffingroup.com/betheme/features/be-custom/ Type:...
Cisco Secure Email Gateways can easily be circumvented
Posted by FD on Nov 15 This report is being published within a coordinated disclosure procedure. The researcher has been in contact with the vendor...
USN-5725-1: Go vulnerability
Diederik Loerakker, Jonny Rhea, Raúl Kripalani, and Preston Van Loon discovered that Go incorrectly handled certain inputs. An attacker could possibly use this issue to...