Category: Advisories

Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly use this issue to cause FFmpeg to crash,...

FEDORA-2024-06e6dcbb42 Packages in this update: nginx-1.26.1-1.fc40 Update description: *) Security: when using HTTP/3, processing of a specially crafted QUIC session might cause a worker process...

FEDORA-2024-2e4858330c Packages in this update: nginx-1.26.1-1.fc39 Update description: *) Security: when using HTTP/3, processing of a specially crafted QUIC session might cause a worker process...

Lukas Fittl discovered that PostgreSQL incorrectly performed authorization in the built-in pg_stats_ext and pg_stats_ext_exprs views. An unprivileged database user can use this issue to read...

It was discovered that PyMySQL incorrectly escaped untrusted JSON input. An attacker could possibly use this issue to perform SQL injection attacks. Read More

It was discovered that browserify-sign incorrectly handled an upper bound check in signature verification. If a user or an automated system were tricked into opening...

This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code...

Posted by Thomas Weber via Fulldisclosure on May 29 CyberDanube Security Research 20240528-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| ORing IAP-420 vulnerable version| 2.01e fixed version|...

Posted by Marco Ivaldi on May 29 Hi, Please find attached a security advisory that describes multiple vulnerabilities we discovered in Eclipse ThreadX (aka Azure...

Multiple vulnerabilities have been discovered in Fortinet FortiSIEM which could allow for remote code execution. FortiSIEM is a multi-tenant SIEM that offers real-time infrastructure and...