ZDI-24-1176: Amazon AWS aws-glue-with-s2s-vpn Uncontrolled Search Path Element Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Amazon AWS. Authentication is not required to exploit this vulnerability. The ZDI...
ZDI-24-1181: Axis Communications Autodesk Plugin Exposure of Sensitive Information Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected services of Axis Communications Autodesk Plugin. Authentication is not required to exploit this vulnerability. The...
ZDI-24-1180: Apple macOS AMDRadeonX6000MTLDriver KTX Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the Metal framework is required to exploit this...
ZDI-24-1179: Apple macOS AMDRadeonX6000MTLDriver KTX Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Metal framework is required to exploit this...
DSA-5757-1 chromium – security update
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. https://security-tracker.debian.org/tracker/DSA-5757-1 Read More
OXAS-ADV-2024-0003: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Aug 22 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
OXAS-ADV-2024-0004: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Aug 22 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
[SYSS-2024-042] DiCal-RED – Exposure of Sensitive Information to an Unauthorized Actor
Posted by Sebastian Hamann via Fulldisclosure on Aug 22 Advisory ID: SYSS-2024-042 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Version(s): Unknown Tested Version(s): 4009 Vulnerability...
[SYSS-2024-041] DiCal-RED – Use of Unmaintained Third Party Components
Posted by Sebastian Hamann via Fulldisclosure on Aug 22 Advisory ID: SYSS-2024-041 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Version(s): Unknown Tested Version(s): 4009 Vulnerability...
[SYSS-2024-040] DiCal-RED – Improper Authentication
Posted by Sebastian Hamann via Fulldisclosure on Aug 22 Advisory ID: SYSS-2024-040 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Version(s): Unknown Tested Version(s): 4009 Vulnerability...