USN-6848-1: Roundcube vulnerabilities
Matthieu Faou and Denys Klymenko discovered that Roundcube incorrectly handled certain SVG images. A remote attacker could possibly use this issue to load arbitrary JavaScript...
firefox-127.0.2-1.fc39
FEDORA-2024-a61be271bb Packages in this update: firefox-127.0.2-1.fc39 Update description: New upstream version (127.0.2) New upstream version (127.0) Read More
USN-6847-1: libheif vulnerabilities
It was discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash the program, resulting in a denial...
Multiple Vulnerabilities in Progress MOVEit Products Could Allow for Authentication Bypass
Multiple vulnerabilities have been discovered in MOVEit products, which could allow for authentication bypass. MOVEit Gateway acts as a proxy between inbound connections from the...
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe...
USN-6846-1: Ansible vulnerabilities
It was discovered that Ansible incorrectly handled certain inputs when using tower_callback parameter. If a user or an automated system were tricked into opening a...
emacs-29.4-2.fc39
FEDORA-2024-3fedeba41f Packages in this update: emacs-29.4-2.fc39 Update description: Update to version 29.4, fixing CVE-2024-39331. Update to Emacs 29.4, fixing CVE-2024-39331. Read More
firefox-127.0-2.fc39
FEDORA-2024-8a0ad30961 Packages in this update: firefox-127.0-2.fc39 Update description: New upstream version (127.0) Read More
ZDI-24-882: VMware vCenter Server Appliance License Server Uncontrolled Memory Allocation Denial-of-Service Vulnerability
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of VMware vCenter Server Appliance. Authentication is not required to exploit this...
SEC Consult SA-20240624-0 :: Multiple Vulnerabilities allowing complete bypass in Faronics WINSelect (Standard + Enterprise)
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 24 SEC Consult Vulnerability Lab Security Advisory < 20240624-0 > ======================================================================= title: Multiple Vulnerabilities allowing...