![[KIS-2022-05] Joomla! <= 4.1.0 (Tar.php) Zip Slip Vulnerability](https://cybersecurityupdate.net/wp-content/uploads/2022/02/CYBERSECURITY.png)
[KIS-2022-05] Joomla! <= 4.1.0 (Tar.php) Zip Slip Vulnerability
Posted by Egidio Romano on Mar 29 ------------------------------------------------- Joomla! <= 4.1.0 (Tar.php) Zip Slip Vulnerability ------------------------------------------------- [-] Software Link: http://www.joomla.org/ [-] Affected Versions: Version 4.1.0...
USN-5351-2: Paramiko vulnerability
USN-5351-1 fixed a vulnerability in Paramiko. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Jan Schejbal discovered that Paramiko incorrectly...
USN-5313-2: OpenJDK 11 regression
USN-5313-1 fixed vulnerabilities and added features in OpenJDK. Unfortunately, that update introduced a regression in OpenJDK 11 that could impact interoperability with some popular HTTP/2...
gdal-3.2.2-3.fc34 mingw-gdal-3.2.2-3.fc34
FEDORA-2022-cffca5dbf4 Packages in this update: gdal-3.2.2-3.fc34 mingw-gdal-3.2.2-3.fc34 Update description: Backport patch for CVE-2021-45943. Read More
ZDI-22-545: (0Day) Siemens Simcenter Femap NEU File Parsing Out-Of-Bounds Write Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in...
ZDI-22-544: (Pwn2Own) Netgear R6700v3 NetUSB Integer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability. Read...
ZDI-22-543: KOYO Screen Creator SCA2 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of KOYO Screen Creator. User interaction is required to exploit this vulnerability in...
Post Title
A vulnerability has been discovered in Sophos Firewall’s user portal and Webadmin that could allow for arbitrary remote code execution. Sophos Firewall is a next...
Backdoor.Win32.Avstral.e / Unauthenticated Remote Command Execution
Posted by malvuln on Mar 28 Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/35f0d754f161af35241cb081c73ea6dd.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat:...
Backdoor.Win32.Chubo.c / Cross Site Scripting (XSS)
Posted by malvuln on Mar 28 Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/c16b04a9879896ef453a6deb13528087_B.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat:...