This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Dimension. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
Category Archives: Advisories
CyberDanube Security Research 20230511-0 | Multiple Vulnerabilities in Advantech EKI-15XX Series
Posted by Thomas Weber on May 11
CyberDanube Security Research 20230511-0
——————————————————————————-
title| Multiple Vulnerabilities
product| EKI-1524-CE series, EKI-1522 series, EKI-1521 series
vulnerable version| 1.21
fixed version| 1.24
CVE number| CVE-2023-2573, CVE-2023-2574, CVE-2023-2575
impact| High
homepage| https://advantech.com…
CVE-2020-13378
Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code.
kernel-6.2.15-100.fc36
FEDORA-2023-00393126a0
Packages in this update:
kernel-6.2.15-100.fc36
Update description:
The 6.2.15 stable kernel update contains a number of important fixes across the tree.
kernel-6.2.15-300.fc38
FEDORA-2023-26325e5399
Packages in this update:
kernel-6.2.15-300.fc38
Update description:
The 6.2.15 stable kernel update contains a number of important fixes across the tree.
kernel-6.2.15-200.fc37
FEDORA-2023-dfd4a6e8f2
Packages in this update:
kernel-6.2.15-200.fc37
Update description:
The 6.2.15 stable kernel update contains a number of important fixes across the tree.
libssh-0.10.5-1.fc38
FEDORA-2023-741d5f1fd3
Packages in this update:
libssh-0.10.5-1.fc38
Update description:
Update to 0.10.5 (CVE-2023-1667 CVE-2023-2283)
USN-6073-4: os-brick vulnerability
Jan Wasilewski and Gorka Eguileor discovered that os-brick incorrectly
handled deleted volume attachments. An authenticated user or attacker could
possibly use this issue to gain access to sensitive information.
This update may require configuration changes to be completely effective,
please see the upstream advisory for more information:
https://security.openstack.org/ossa/OSSA-2023-003.html
USN-6073-3: Nova vulnerability
Jan Wasilewski and Gorka Eguileor discovered that Nova incorrectly
handled deleted volume attachments. An authenticated user or attacker could
possibly use this issue to gain access to sensitive information.
This update may require configuration changes to be completely effective,
please see the upstream advisory for more information:
https://security.openstack.org/ossa/OSSA-2023-003.html
USN-6073-2: Glance_store vulnerability
Jan Wasilewski and Gorka Eguileor discovered that Glance_store incorrectly
handled deleted volume attachments. An authenticated user or attacker could
possibly use this issue to gain access to sensitive information.
This update may require configuration changes to be completely effective,
please see the upstream advisory for more information:
https://security.openstack.org/ossa/OSSA-2023-003.html