Application is Vulnerable to Session Fixation
Posted by YOGESH BHANDAGE on Mar 27 *Vulnerability Name - *Application is Vulnerable to Session Fixation *Vulnerable URL: *www.fusionpbx.com *Overview of the Vulnerability* Session fixation...
APPLE-SA-03-25-2024-1 Safari 17.4.1
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-1 Safari 17.4.1 Safari 17.4.1 addresses the following issues. Information about the security content is...
APPLE-SA-03-25-2024-2 macOS Sonoma 14.4.1
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-2 macOS Sonoma 14.4.1 macOS Sonoma 14.4.1 addresses the following issues. Information about the security...
APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6 macOS Ventura 13.6.6 addresses the following issues. Information about the security...
APPLE-SA-03-25-2024-4 iOS 17.4.1 and iPadOS 17.4.1
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-4 iOS 17.4.1 and iPadOS 17.4.1 iOS 17.4.1 and iPadOS 17.4.1 addresses the following issues....
APPLE-SA-03-25-2024-5 iOS 16.7.7 and iPadOS 16.7.7
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-5 iOS 16.7.7 and iPadOS 16.7.7 iOS 16.7.7 and iPadOS 16.7.7 addresses the following issues....
APPLE-SA-03-25-2024-6 visionOS 1.1.1
Posted by Apple Product Security via Fulldisclosure on Mar 27 APPLE-SA-03-25-2024-6 visionOS 1.1.1 visionOS 1.1.1 addresses the following issues. Information about the security content is...
Escape sequence injection in util-linux wall (CVE-2024-28085)
Posted by Skyler Ferrante (RIT Student) via Fulldisclosure on Mar 27 Wall-Escape (CVE-2024-28085) Skyler Ferrante: Escape sequence injection in util-linux wall ================================================================= Summary ================================================================= The...
Win32.STOP.Ransomware (smokeloader) / Remote Code Execution (MITM)
Posted by malvuln on Mar 27 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/3b9e9e130d52fe95c8be82aa4b8feb74.txt Contact: malvuln13 () gmail com Media:...
Circontrol EV Charger vulnerabilities (CVE-2020-8006, CVE-2020-8007)
Posted by Dariusz G on Mar 27 Circontrol EV Charger vulnerabilities. 1. CVE-2020-8006 Pre-Auth Stack Based Buffer Overflow CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H (10) The server in Circontrol Raption...