DSA-5229 freecad – security update
Two vulnerabilities were discovered in FreeCAD, a CAD/CAM program, which could result in the execution of arbitrary shell commands when opening a malformed file. Read...
CVE-2021-44425
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an...
CVE-2021-44426
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local ~/Downloads/ directory is...
CVE-2022-1700
Improper Restriction of XML External Entity Reference ('XXE') vulnerability in the Policy Engine of Forcepoint Data Loss Prevention (DLP), which is also leveraged by Forcepoint...
APPLE-SA-2022-09-12-5 Safari 16
Posted by Apple Product Security via Fulldisclosure on Sep 12 APPLE-SA-2022-09-12-5 Safari 16 Safari 16 addresses the following issues. Information about the security content is...
APPLE-SA-2022-09-12-4 macOS Monterey 12.6
Posted by Apple Product Security via Fulldisclosure on Sep 12 APPLE-SA-2022-09-12-4 macOS Monterey 12.6 macOS Monterey 12.6 addresses the following issues. Information about the security...
APPLE-SA-2022-09-12-2 iOS 15.7 and iPadOS 15.7
Posted by Apple Product Security via Fulldisclosure on Sep 12 APPLE-SA-2022-09-12-2 iOS 15.7 and iPadOS 15.7 iOS 15.7 and iPadOS 15.7 addresses the following issues....
APPLE-SA-2022-09-12-1 iOS 16
Posted by Apple Product Security via Fulldisclosure on Sep 12 APPLE-SA-2022-09-12-1 iOS 16 iOS 16 addresses the following issues. Information about the security content is...
[SYSS-2022-041] Remote Code Execution due to unsafe JMX default configuration in JasperReports Server
Posted by Moritz Bechler on Sep 12 Advisory ID: SYSS-2022-041 Product: JasperReports Server Manufacturer: TIBCO Software Inc. Tested Version(s): 8.0.2 Community Edition Vulnerability Type: CWE-502:...
Multiple vulnerabilities discovered in Qualys Cloud Agent
Posted by Daniel Wood via Fulldisclosure on Sep 12 The Unqork Security team discovered multiple security vulnerabilities in the Qualys Cloud Agent, to include arbitrary...