Category Archives: Advisories

ZDI-24-1457: Delta Electronics InfraSuite Device Master _gExtraInfo Deserialization of Untrusted Data Remote Code Execution Vulnerability

November 6, 2024

Read Time:13 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics InfraSuite Device Master. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2024-10456.

Advisories

GLSA 202411-01: Neat VNC: Authentication Bypass

November 6, 2024

Read Time:1 Second

Post Content

Advisories

GLSA 202411-02: Flatpak: Sandbox Escape

November 6, 2024

Read Time:1 Second

Post Content

Advisories

GLSA 202411-03: Ubiquiti UniFi: Privilege Escalation

November 6, 2024

Read Time:1 Second

Post Content

Advisories

GLSA 202411-05: libgit2: Multiple Vulnerabilities

November 6, 2024

Read Time:1 Second

Post Content

Advisories

GLSA 202411-04: EditorConfig core C library: arbitrary stack write

November 6, 2024

Read Time:1 Second

Post Content

Advisories

webkit2gtk4.0-2.46.3-1.fc41

November 5, 2024

Read Time:6 Second

FEDORA-2024-58de5ad94f

Packages in this update:

webkit2gtk4.0-2.46.3-1.fc41

Update description:

Update to 2.46.3

Advisories

webkit2gtk4.0-2.46.3-1.fc40

November 5, 2024

Read Time:6 Second

FEDORA-2024-8f88cdf4e5

Packages in this update:

webkit2gtk4.0-2.46.3-1.fc40

Update description:

Update to 2.46.3

Advisories

python3.6-3.6.15-38.fc40

November 5, 2024

Read Time:7 Second

FEDORA-2024-c8cc025262

Packages in this update:

python3.6-3.6.15-38.fc40

Update description:

Security fix for CVE-2024-9287 (rhbz#2321659)

Advisories

USN-7093-1: Werkzeug vulnerability

November 5, 2024

Read Time:9 Second

It was discovered that Werkzeug incorrectly handled multiple form
submission requests. A remote attacker could possibly use this issue to
cause Werkzeug to consume resources, leading to a denial of service.

News, Advisories and much more

Exit mobile version