Category Archives: Advisories

CVE-2020-22669

Read Time:13 Second

Modsecurity owasp-modsecurity-crs 3.2.0 (Paranoia level at PL1) has a SQL injection bypass vulnerability. Attackers can use the comment characters and variable assignments in the SQL syntax to bypass Modsecurity WAF protection and implement SQL injection attacks on Web applications.

Read More

CVE-2021-35097

Read Time:12 Second

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Read More

CVE-2021-35113

Read Time:10 Second

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Read More

curl-7.85.0-1.fc37

Read Time:10 Second

FEDORA-2022-97e8d1d29c

Packages in this update:

curl-7.85.0-1.fc37

Update description:

new upstream release, which fixes the following vulnerability
CVE-2022-35252 – control code in cookie denial of service

Read More