This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
Category Archives: Advisories
ZDI-22-758: (Pwn2Own) NETGEAR R6700v3 Vulnerable Third-Party Component Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability.
[R1] Nessus Network Monitor 6.0.1 Fixes Multiple Third-party Vulnerabilities
[R1] Nessus Network Monitor 6.0.1 Fixes Multiple Third-party Vulnerabilities
Arnie Cabral
Mon, 05/09/2022 – 17:04
Out of caution and in line with best practice, Tenable opted to upgrade the bundled components to address the potential impact of these issues. Nessus Network Monitor 6.0.1 updates OpenSSL to version 1.1.1n and jQueryUI to 1.13.0 to address the identified vulnerabilities.
kernel-5.17.6-100.fc34 kernel-headers-5.17.6-100.fc34 kernel-tools-5.17.6-100.fc34
FEDORA-2022-a0f65397a3
Packages in this update:
kernel-5.17.6-100.fc34
kernel-headers-5.17.6-100.fc34
kernel-tools-5.17.6-100.fc34
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
kernel-5.17.6-300.fc36 kernel-headers-5.17.6-300.fc36 kernel-tools-5.17.6-300.fc36
FEDORA-2022-e9378a3573
Packages in this update:
kernel-5.17.6-300.fc36
kernel-headers-5.17.6-300.fc36
kernel-tools-5.17.6-300.fc36
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
kernel-5.17.6-200.fc35 kernel-headers-5.17.6-200.fc35 kernel-tools-5.17.6-200.fc35
FEDORA-2022-fd85148be2
Packages in this update:
kernel-5.17.6-200.fc35
kernel-headers-5.17.6-200.fc35
kernel-tools-5.17.6-200.fc35
Update description:
The 5.17.6 stable kernel updates contain a number of important fixes across the tree.
vim-8.2.4927-1.fc34
FEDORA-2022-8df66cdbef
Packages in this update:
vim-8.2.4927-1.fc34
Update description:
patchlevel 4927
Security fixes for CVE-2022-1616, CVE-2022-1619, CVE-2022-1619
vim-8.2.4927-1.fc35
FEDORA-2022-f0db3943d9
Packages in this update:
vim-8.2.4927-1.fc35
Update description:
patchlevel 4927
Security fixes for CVE-2022-1616, CVE-2022-1619, CVE-2022-1619
CVE-2019-25060
The WPGraphQL WordPress plugin before 0.3.5 doesn’t properly restrict access to information about other users’ roles on the affected site. Because of this, a remote attacker could forge a GraphQL query to retrieve the account roles of every user on the site.
CVE-2021-20479
IBM Cloud Pak System 2.3.0 through 2.3.3.3 Interim Fix 1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197498.