Category Archives: Advisories

ZDI-24-213: NI FlexLogger userservices Missing Authorization Local Privilege Escalation Vulnerability

February 28, 2024

Read Time:16 Second

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-1155.

ZDI-24-212: NI FlexLogger TagHistorian Missing Authorization Local Privilege Escalation Vulnerability

February 28, 2024

Read Time:16 Second

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-1155.

ZDI-24-211: NI FlexLogger DocumentManager Missing Authorization Local Privilege Escalation Vulnerability

February 28, 2024

Read Time:16 Second

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-1155.

ZDI-24-210: NI FlexLogger SkylineService Missing Authorization Local Privilege Escalation Vulnerability

February 28, 2024

Read Time:16 Second

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-1155.

ZDI-24-209: NI FlexLogger ServiceRegistry Missing Authorization Local Privilege Escalation Vulnerability

February 28, 2024

Read Time:16 Second

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-1155.

fontforge-20230101-11.fc40

February 28, 2024

Read Time:7 Second

FEDORA-2024-e01ef71e64

Packages in this update:

fontforge-20230101-11.fc40

Update description:

Security fix for CVE-2024-25081 and CVE-2024-25082

DSA-5634-1 chromium – security update

February 28, 2024

Read Time:9 Second

Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.

https://security-tracker.debian.org/tracker/DSA-5634-1

xen-4.17.2-7.fc38

February 27, 2024

Read Time:9 Second

FEDORA-2024-0da80aa623

Packages in this update:

xen-4.17.2-7.fc38

Update description:

x86: shadow stack vs exceptions from emulation stubs – [XSA-451,
CVE-2023-46841] (#2266326)

xen-4.17.2-7.fc39

February 27, 2024

Read Time:9 Second

FEDORA-2024-aca9ed1eb1

Packages in this update:

xen-4.17.2-7.fc39

Update description:

x86: shadow stack vs exceptions from emulation stubs – [XSA-451,
CVE-2023-46841] (#2266326)

xen-4.18.0-6.fc40

February 27, 2024

Read Time:9 Second

FEDORA-2024-ee7c81a4d6

Packages in this update:

xen-4.18.0-6.fc40

Update description:

x86: shadow stack vs exceptions from emulation stubs – [XSA-451,
CVE-2023-46841] (#2266326)

News, Advisories and much more

Exit mobile version