Ignite Realtime Openfire Path Traversal Vulnerability (CVE-2023-32315)
What is the vulnerability?The CVE-2023-32315 is a path traversal vulnerability that affects all Openfire versions since version 3.1.0. Successful exploitation of this vulnerability can allow...
et-6.2.8-2.el8
FEDORA-EPEL-2024-f282573e05 Packages in this update: et-6.2.8-2.el8 Update description: Update to 6.2.8, fixing CVE-2022-48257 and CVE-2022-48258 Read More
pypy-7.3.15-3.fc40
FEDORA-2024-612986fdfa Packages in this update: pypy-7.3.15-3.fc40 Update description: Security fix for CVE-2023-5752 (in the bundled pip). Read More
pypy-7.3.15-3.fc39
FEDORA-2024-dada06a500 Packages in this update: pypy-7.3.15-3.fc39 Update description: Security fix for CVE-2023-5752 (in the bundled pip). Read More
pypy-7.3.15-3.fc38
FEDORA-2024-797928fed3 Packages in this update: pypy-7.3.15-3.fc38 Update description: Security fix for CVE-2023-5752 (in the bundled pip). Read More
Microsoft PlayReady white-box cryptography weakness
Posted by Security Explorations on May 01 Hello All, There is yet another attack possible against Protected Media Path process beyond the one involving two...
pypy-7.3.15-3.fc41
FEDORA-2024-305522ab38 Packages in this update: pypy-7.3.15-3.fc41 Update description: Automatic update for pypy-7.3.15-3.fc41. Changelog * Tue Apr 30 2024 Charalampos Stratakis <cstratak@redhat.com> - 7.3.15-3 - Security...
ZDI-24-419: (Pwn2Own) Xiaomi Pro 13 GetApps integral-dialog-page Cross-Site Scripting Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Xiaomi Pro 13 smartphones. User interaction is required to exploit this vulnerability...
ZDI-24-418: (Pwn2Own) Xiaomi Pro 13 mimarket manual-upgrade Cross-Site Scripting Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Xiaomi Pro 13 smartphones. User interaction is required to exploit this vulnerability...
ZDI-24-417: Xiaomi Pro 13 isUrlMatchLevel Permissive List of Allowed Inputs Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Xiaomi Pro 13 smartphones. User interaction is required to exploit this vulnerability...