jbt_markdown_editor — jbt_markdown_editor
  Cross Site Scripting (XSS) vulnerability in Rendering Engine in jbt Markdown Editor thru commit 2252418c27dffbb35147acd8ed324822b8919477, allows remote attackers to execute arbirary code via crafted payload or opening malicious .md file. 2023-08-11 not yet calculated CVE-2020-19952
MISC
CONFIRM
MISC gila_cms — gila_cms
  Cross Site Scripting (XSS) vulnerability in adm_user parameter in Gila CMS version 1.11.3, allows remote attackers to execute arbitrary code during the Gila CMS installation. 2023-08-11 not yet calculated CVE-2020-20523
MISC yzmcms — yzmcms
  Cross Site Request Forgery (CSRF) vulnerability in yzmcms version 5.6, allows remote attackers to escalate privileges and gain sensitive information sitemodel/add.html endpoint. 2023-08-11 not yet calculated CVE-2020-23595
MISC laborator — kalium
  Cross Site Scripting (XSS) vulnerability in Name Input Field in Contact Us form in Laborator Kalium before 3.0.4, allows remote attackers to execute arbitrary code. 2023-08-11 not yet calculated CVE-2020-24075
MISC jerryscript — jerryscript
  An issue was discovered in ecma-helpers.c in jerryscript version 2.3.0, allows local attackers to cause a denial of service (DoS) (Null Pointer Dereference). 2023-08-11 not yet calculated CVE-2020-24187
MISC
MISC getbyte — getbyte
  An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop). 2023-08-11 not yet calculated CVE-2020-24221
MISC ffjpeg – –   ffjpeg
  Buffer Overflow vulnerability in jfif_decode() function in rockcarry ffjpeg through version 1.0.0, allows local attackers to execute arbitrary code due to an issue with ALIGN. 2023-08-11 not yet calculated CVE-2020-24222
MISC cms — cms_dev
  Plaintext Password vulnerability in AddAdmin.py in cms-dev/cms v1.4.rc1, allows attackers to gain sensitive information via audit logs. 2023-08-11 not yet calculated CVE-2020-24804
MISC lepton-cms — lepton-cms
  Cross Site Scripting (XSS) vulnerability in backend/pages/modify.php in Lepton-CMS version 4.7.0, allows remote attackers to execute arbitrary code. 2023-08-11 not yet calculated CVE-2020-24872
MISC gnome_gmail — gnome_gmail
  An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted “mailto” link. 2023-08-11 not yet calculated CVE-2020-24904
MISC xxl-job-admin — xxl-job-admin
  Cross Site Request Forgery (CSRF) vulnerability in xxl-job-admin/user/add in xuxueli xxl-job version 2.2.0, allows remote attackers to execute arbitrary code and esclate privileges via crafted .html file. 2023-08-11 not yet calculated CVE-2020-24922
MISC daylight_studio_fuel_cms — daylight_studio_fuel_cms
  SQL Injection vulnerability in file Base_module_model.php in Daylight Studio FUEL-CMS version 1.4.9, allows remote attackers to execute arbitrary code via the col parameter to function list_items. 2023-08-11 not yet calculated CVE-2020-24950
MISC thinkcmf — thinkcmf
  Cross Site Scripting (XSS) vulnerability in UserController.php in ThinkCMF version 5.1.5, allows attackers to execute arbitrary code via crafted user_login. 2023-08-11 not yet calculated CVE-2020-25915
MISC zoho — manageengine_password_manager_pro
  Cross Site Scripting (XSS) vulnerability in Query Report feature in Zoho ManageEngine Password Manager Pro version 11001, allows remote attackers to execute arbitrary code and steal cookies via crafted JavaScript payload. 2023-08-11 not yet calculated CVE-2020-27449
MISC
MISC zrlog — zrlog
  Directory Traversal vulnerability in delete function in admin.api.TemplateController in ZrLog version 2.1.15, allows remote attackers to delete arbitrary files and cause a denial of service (DoS). 2023-08-11 not yet calculated CVE-2020-27514
MISC foldingathome_client — foldingathome_client
  An issue was discovered in FoldingAtHome Client Advanced Control GUI before commit 9b619ae64443997948a36dda01b420578de1af77, allows remote attackers to execute arbitrary code via crafted payload to function parse_message in file Connection.py. 2023-08-11 not yet calculated CVE-2020-27544
MISC kindsoft– kindeditor
  Cross Site Scripting (XSS) vulnerability in content1 parameter in demo.jsp in kindsoft kindeditor version 4.1.12, allows attackers to execute arbitrary code. 2023-08-11 not yet calculated CVE-2020-28717
MISC jhead — jhead
  Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead version 3.04, allows local attackers to execute arbitrary code and cause a denial of service (DoS). 2023-08-11 not yet calculated CVE-2020-28840
MISC
MISC
MISC
MISC churchcrm — churchcrm
  CSV Injection vulnerability in ChurchCRM version 4.2.0, allows remote attackers to execute arbitrary code via crafted CSV file. 2023-08-11 not yet calculated CVE-2020-28848
MISC churchcrm — churchcrm
  Cross Site Scripting (XSS) vulnerability in ChurchCRM version 4.2.1, allows remote attckers to execute arbitrary code and gain sensitive information via crafted payload in Add New Deposit field in View All Deposit module. 2023-08-11 not yet calculated CVE-2020-28849
MISC faucet — sdn_ryu
  An issue was discovered in OFPBundleCtrlMsg in parser.py in Faucet SDN Ryu version 4.34, allows remote attackers to cause a denial of service (DoS) (infinite loop). 2023-08-11 not yet calculated CVE-2020-35139
MISC faucet — sdn_ryu
  An issue was discovered in OFPQueueGetConfigReply in parser.py in Faucet SDN Ryu version 4.34, allows remote attackers to cause a denial of service (DoS) (infinite loop). 2023-08-11 not yet calculated CVE-2020-35141
MISC foxit — pdf_reader
  Buffer Overflow vulnerability in cFilenameInit parameter in browseForDoc function in Foxit Software Foxit PDF Reader version 10.1.0.37527, allows local attackers to cause a denial of service (DoS) via crafted .pdf file. 2023-08-11 not yet calculated CVE-2020-35990
MISC
MISC freedesktop — poppler
  An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::cvtGlyph function. 2023-08-11 not yet calculated CVE-2020-36023
MISC freedesktop — poppler
  An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function. 2023-08-11 not yet calculated CVE-2020-36024
MISC sourcecodester — school_faculty_scheduling_system
  SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via crafted payload to id parameter in manage_user.php. 2023-08-11 not yet calculated CVE-2020-36034
MISC
MISC
MISC wuzhicms — wuzhicms
  An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php. 2023-08-11 not yet calculated CVE-2020-36037
MISC bloofoxcms — bloofoxcms
  File Upload vulnerability in bloofoxCMS version 0.5.2.1, allows remote attackers to execute arbitrary code and escalate privileges via crafted webshell file to upload module. 2023-08-11 not yet calculated CVE-2020-36082
MISC cszcms — cszcms
  SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pm_sendmail parameter in csz_model.php. 2023-08-11 not yet calculated CVE-2020-36136
MISC ffmpeg — ffmpeg
  An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS). 2023-08-11 not yet calculated CVE-2020-36138
MISC
MISC
MISC qdpf — qdpf
  An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf. 2023-08-11 not yet calculated CVE-2021-25786
MISC supermicro — cms
  An issue was discovered in pcmt superMicro-CMS version 3.11, allows attackers to delete files via crafted image file in images.php. 2023-08-11 not yet calculated CVE-2021-25856
MISC supermicro — cms
  An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the font_type parameter to setup.php. 2023-08-11 not yet calculated CVE-2021-25857
MISC huemagic — huemagic
  Directory Traversal vulnerability in Foddy node-red-contrib-huemagic version 3.0.0, allows remote attackers to gain sensitive information via crafted request in res.sendFile API in hue-magic.js. 2023-08-11 not yet calculated CVE-2021-26504
MISC hello.js — hello.js
  Prototype pollution vulnerability in MrSwitch hello.js version 1.18.6, allows remote attackers to execute arbitrary code via hello.utils.extend function. 2023-08-11 not yet calculated CVE-2021-26505
MISC open-falcon — open-falcon
  An issue was discovered in open-falcon dashboard version 0.2.0, allows remote attackers to gain, modify, and delete sensitive information via crafted POST request to register interface. 2023-08-11 not yet calculated CVE-2021-27523
MISC braft-editor — braft-editor
  Cross Site Scripting (XSS) vulnerability in margox braft-editor version 2.3.8, allows remote attackers to execute arbitrary code via the embed media feature. 2023-08-11 not yet calculated CVE-2021-27524
MISC qt — qt
  Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS). 2023-08-11 not yet calculated CVE-2021-28025
MISC cookieremembermemanager — ruoyi
  An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges. 2023-08-11 not yet calculated CVE-2021-28411
MISC xnview — xnview
  Buffer Overflow vulnerability in XNView version 2.49.3, allows local attackers to execute arbitrary code via crafted TIFF file. 2023-08-11 not yet calculated CVE-2021-28427
MISC ffmpeg — ffmpeg
  Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c in FFmpeg version 4.3.2, allows local attackers to cause a denial of service (DoS) via crafted .mov file. 2023-08-11 not yet calculated CVE-2021-28429
MISC xnview — xnview
  Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file. 2023-08-11 not yet calculated CVE-2021-28835
MISC
CONFIRM staticpool — staticpool
  An issue was discovered in StaticPool in SUCHMOKUO node-worker-threads-pool version 1.4.3, allows attackers to cause a denial of service. 2023-08-11 not yet calculated CVE-2021-29057
MISC pear_admin_think — pear_admin_think
  SQL Injection in pear-admin-think version 2.1.2, allows attackers to execute arbitrary code and escalate privileges via crafted GET request to Crud.php. 2023-08-11 not yet calculated CVE-2021-29378
MISC vim — vim
  vim 8.2.2348 is affected by null pointer dereference, allows local attackers to cause a denial of service (DoS) via the ex_buffer_all method. 2023-08-11 not yet calculated CVE-2021-3236
MISC siemens — siemens_software_center
  A vulnerability has been identified in Siemens Software Center (All versions < V3.0). A DLL Hijacking vulnerability could allow a local attacker to execute code with elevated privileges by placing a malicious DLL in one of the directories on the DLL search path. 2023-08-08 not yet calculated CVE-2021-41544
MISC intel(r) — onemkl
  Uncontrolled search path in some Intel(R) oneMKL software before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-25864
MISC intel(r) — proset/wireless_wifi_and_killer(tm)_wifi
  Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-27635
MISC wordpress — wordpress
  Unauth. Open Redirect vulnerability in Arscode Ninja Popups plugin <= 4.7.5 versions. 2023-08-10 not yet calculated CVE-2022-27861
MISC intel(r) — processors
  Improper buffer restrictions in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2022-27879
MISC intel(r) — dtt
  Improper access control in the Intel DTT Software before version 8.7.10400.15482 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-29470
MISC intel(r) — csme
  Improper access control in the Intel(R) CSME software installer before version 2239.3.7.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-29871
MISC intel(r) — manageability_commander
  Cross-site Scripting (XSS) in some Intel(R) Manageability Commander software before version 2.3 may allow an unauthenticated user to potentially enable escalation of privilege via network access. 2023-08-11 not yet calculated CVE-2022-29887
MISC intel(r) — pcsd_bios
  Improper input validation in firmware for some Intel(R) PCSD BIOS before version 02.01.0013 may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2022-34657
MISC intel(r) — proset/wireless_wifi_and_killer(tm)_wifi
  Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an unauthenticated user to potentially enable denial of service via adjacent access. 2023-08-11 not yet calculated CVE-2022-36351
MISC intel(r) — nuc_bios
  Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-36372
MISC intel(r) — amt_in_csme/standard_manageability_in_csme
  Improper input validation in some firmware for Intel(R) AMT and Intel(R) Standard Manageability before versions 11.8.94, 11.12.94, 11.22.94, 12.0.93, 14.1.70, 15.0.45, and 16.1.27 in Intel (R) CSME may allow an unauthenticated user to potentially enable denial of service via network access. 2023-08-11 not yet calculated CVE-2022-36392
MISC intel(r) — nuc
  Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-37336
MISC intel(r) — processors
  Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-37343
MISC intel(r) — proset/wireless_wifi_and_killer(tm)_wifi_software
  Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-38076
MISC intel(r) — processors
  Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2022-38083
MISC intel(r) — converged_security_and_management_engine
  Improper Input validation in firmware for some Intel(R) Converged Security and Management Engine before versions 15.0.45, and 16.1.27 may allow a privileged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2022-38102
MISC intel(r) — arc(tm)_graphics_cards_a770_and_a750
  Improper access control for some Intel(R) Arc(TM) graphics cards A770 and A750 sold between October of 2022 and December of 2022 may allow an authenticated user to potentially enable denial of service or infomation disclosure via local access. 2023-08-11 not yet calculated CVE-2022-38973
MISC siemens — sicam_toolbox_ii
  A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). Affected applications do not properly set permissions for product folders. This could allow an authenticated attacker with low privileges to replace DLLs and conduct a privilege escalation. 2023-08-08 not yet calculated CVE-2022-39062
MISC intel(r) — proset/wireless_wifi_and_killer(tm)_wifi
  Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-40964
MISC intel(r) — processors
  Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2022-40982
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC intel(r) — xeon(r)_processors
  Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-41804
MISC
MISC intel(r) — arc(tm)_graphics_cards_a770_and_a750
  Protection mechanism failure for some Intel(R) Arc(TM) graphics cards A770 and A750 sold between October of 2022 and December of 2022 may allow a privileged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2022-41984
MISC intel(r) — rst
  Uncontrolled search path in some Intel(R) RST software before versions 16.8.5.1014.5, 17.11.3.1010.2, 18.7.6.1011.2 and 19.5.2.1049.5 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-43456
MISC intel(r) — processors
  Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2022-43505
MISC intel(r) — processors
  Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via adjacent access. 2023-08-11 not yet calculated CVE-2022-44611
MISC intel(r) — unison(tm)
  Use of hard-coded credentials in some Intel(R) Unison(TM) software before version 10.12 may allow an authenticated user user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2022-44612
MISC intel(r) — vroc
  Improper access control in some Intel(R) VROC software before version 8.0.0.4035 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-45112
MISC intel(r) — proset/wireless_wifi
  Protection mechanism failure for some Intel(R) PROSet/Wireless WiFi software may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2022-46329
MISC apache — traffic_server
  Improper input validation vulnerability on the range header in Apache Software Foundation Apache Traffic Server. This issue affects Apache Traffic Server: through 9.2.1. 2023-08-09 not yet calculated CVE-2022-47185
MISC studio_11 — outsystems_service
  A DLL hijacking vulnerability has been discovered in OutSystems Service Studio 11 11.53.30 build 61739. When a user open a .oml file (OutSystems Modeling Language), the application will load the following DLLs from the same directory av_libGLESv2.dll, libcef.DLL, user32.dll, and d3d10warp.dll. Using a crafted DLL, it is possible to execute arbitrary code in the context of the current logged in user. 2023-08-10 not yet calculated CVE-2022-47636
MISC
MISC abb — freelance_controllers
  ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make the product inaccessible.  Numeric Range Comparison Without Minimum Check vulnerability in ABB Freelance controllers AC 700F (Controller modules), ABB Freelance controllers AC 900F (controller modules).This issue affects: Freelance controllers AC 700F:  from 9.0;0 through V9.2 SP2, through Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 2019 SP1 FP1;  Freelance controllers AC 900F:  Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 2019 SP1 FP1. 2023-08-07 not yet calculated CVE-2023-0425
MISC abb — freelance_controllers
  ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make the product inaccessible. Stack-based Buffer Overflow vulnerability in ABB Freelance controllers AC 700F (conroller modules), ABB Freelance controllers AC 900F (controller modules).This issue affects:  Freelance controllers AC 700F:  from 9.0;0 through V9.2 SP2, through Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019 , through Freelance 2019 SP1, through Freelance 2019 SP1 FP1;  Freelance controllers AC 900F:  through Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 2019 SP1 FP1. 2023-08-07 not yet calculated CVE-2023-0426
MISC the_opennms_group — horizon
  XXE injection in /rtc/post/ endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to XML external entity (XXE) injection, which can be used for instance to force Horizon to make arbitrary HTTP requests to internal and external services. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizon installation instructions state that they are intended for installation within an organization’s private networks and should not be directly accessible from the Internet. 2023-08-11 not yet calculated CVE-2023-0871
MISC
MISC amd — multiple_products
  Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM. 2023-08-08 not yet calculated CVE-2023-20555
MISC amd — uprof
  Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to send an arbitrary buffer potentially resulting in a Windows crash leading to denial of service. 2023-08-08 not yet calculated CVE-2023-20556
MISC amd — uprof
  Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to send an arbitrary address potentially resulting in a Windows crash leading to denial of service. 2023-08-08 not yet calculated CVE-2023-20561
MISC amd — uprof
  Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution. 2023-08-08 not yet calculated CVE-2023-20562
MISC amd — ryzen_3000_series_desktop_processors
  A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure. 2023-08-08 not yet calculated CVE-2023-20569
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC amd — radeon_software_crimson_relive_edition
  A potential vulnerability was reported in Radeon™ Software Crimson ReLive Edition which may allow escalation of privilege. Radeon™ Software Crimson ReLive Edition falls outside of the security support lifecycle and AMD does not plan to release any mitigations 2023-08-08 not yet calculated CVE-2023-20586
MISC amd — epyc_7001_processors
  A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.  2023-08-08 not yet calculated CVE-2023-20588
MISC amd — ryzen_3000_series_desktop_processors
  An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution.  2023-08-08 not yet calculated CVE-2023-20589
MISC intel(r) — ethernet_controllers_and_adapters_e810_series
  Race condition in firmware for some Intel(R) Ethernet Controllers and Adapters E810 Series before version 1.7.2.4 may allow an authenticated user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-22276
MISC intel(r) — nuc_bios_firmware
  Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-22330
MISC intel(r) — onevpl_gpu
  Out-of-bounds read in some Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-22338
MISC intel(r) — nuc_bios_firmware Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-22356
MISC nozomi_networks — guardian/cmc
  A blind SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in the sorting parameter, allows an authenticated attacker to execute arbitrary SQL queries on the DBMS used by the web application. Authenticated users can extract arbitrary information from the DBMS in an uncontrolled way. 2023-08-09 not yet calculated CVE-2023-22378
MISC intel(r) — nuc
  Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute Element, Intel(R) NUC Laptop Kit, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board and Intel(R) NUC Pro Mini PC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-22444
MISC intel(r) — nuc_bios
  Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-22449
MISC intel(r) — onevpl_gpu
  Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-22840
MISC intel(r) — 621a_chipset
  Unquoted search path in the software installer for the System Firmware Update Utility (SysFwUpdt) for some Intel(R) Server Boards and Intel(R) Server Systems Based on Intel(R) 621A Chipset before version 16.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-22841
MISC nozomi_networks — guardian
  An authenticated attacker with administrative access to the appliance can inject malicious JavaScript code inside the definition of a Threat Intelligence rule, that will later be executed by another legitimate user viewing the details of such a rule. An attacker may be able to perform unauthorized actions on behalf of legitimate users. JavaScript injection was possible in the content for Yara rules, while limited HTML injection has been proven for packet and STYX rules. The injected code will be executed in the context of the authenticated victim’s session. 2023-08-09 not yet calculated CVE-2023-22843
MISC audiocodes — voip_desk_phones
  An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. The validation of firmware images only consists of simple checksum checks for different firmware components. Thus, by knowing how to calculate and where to store the required checksums for the flasher tool, an attacker is able to store malicious firmware. 2023-08-11 not yet calculated CVE-2023-22955
MISC
MISC audiocodes — voip_desk_phones
  An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of a hard-coded cryptographic key, an attacker is able to decrypt encrypted configuration files and retrieve sensitive information. 2023-08-11 not yet calculated CVE-2023-22956
MISC
MISC audiocodes — voip_desk_phones
  An issue was discovered in libac_des3.so on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of hard-coded cryptographic key, an attacker with access to backup or configuration files is able to decrypt encrypted values and retrieve sensitive information, e.g., the device root password. 2023-08-11 not yet calculated CVE-2023-22957
MISC
MISC hcl_software — hcl_nomad_for_web
  If certain local files are manipulated in a certain manner, the validation to use the cryptographic keys can be circumvented.  2023-08-10 not yet calculated CVE-2023-23342
MISC hcl_software — hcl_dryice_iautomate
  HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information. 2023-08-09 not yet calculated CVE-2023-23346
MISC hcl_software — hcl_dryice_iautomate
  HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information. 2023-08-09 not yet calculated CVE-2023-23347
MISC nozomi_networks — guardian/cmc
  A blind SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in the alerts_count component, allows an authenticated attacker to execute arbitrary SQL queries on the DBMS used by the web application. Authenticated users can extract arbitrary information from the DBMS in an uncontrolled way. 2023-08-09 not yet calculated CVE-2023-23574
MISC intel(r) — nuc
  Uncontrolled search path element for some ITE Tech consumer infrared drivers before version 5.5.2.1 for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-23577
MISC wordpress — wordpress
  Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Muneeb Layer Slider plugin <= 1.1.9.7 versions. 2023-08-10 not yet calculated CVE-2023-23798
MISC wordpress — wordpress
  Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Arsham Mirshah Add Posts to Pages plugin <= 1.4.1 versions. 2023-08-10 not yet calculated CVE-2023-23826
MISC wordpress — wordpress
  Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Swashata WP Category Post List Widget plugin <= 2.0.3 versions. 2023-08-10 not yet calculated CVE-2023-23828
MISC wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Webdzier Button plugin <= 1.1.23 versions. 2023-08-10 not yet calculated CVE-2023-23871
MISC wordpress — wordpress
  Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in YIKES, Inc. Easy Forms for Mailchimp plugin <= 6.8.8 versions. 2023-08-10 not yet calculated CVE-2023-23900
MISC nozomi_networks — guardian
  An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error. The whole application in rendered unusable until a console intervention. 2023-08-09 not yet calculated CVE-2023-23903
MISC intel(r) — xeon(r)_processors
  Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-23908
MISC
MISC wordpress — wordpress
  Auth. (subscriber+) Reflected Cross-site Scripting (XSS) vulnerability in Wpazure Themes Upfrontwp theme <= 1.1 versions. 2023-08-10 not yet calculated CVE-2023-24009
MISC nozomi_networks — guardian
  A partial DoS vulnerability has been detected in the Reports section, exploitable by a malicious authenticated user forcing a report to be saved with its name set as null. The reports section will be partially unavailable for all later attempts to use it, with the report list seemingly stuck on loading. 2023-08-09 not yet calculated CVE-2023-24015
MISC intel(r) — quartus(r)_prime_pro_and_standard_edition_software_for_linux
  Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-24016
MISC rockwell_automation — armor_powerflex
  A vulnerability was discovered in the Rockwell Automation Armor PowerFlex device when the product sends communications to the local event log. Threat actors could exploit this vulnerability by sending an influx of network commands, causing the product to generate an influx of event log traffic at a high rate. If exploited, the product would stop normal operations and self-reset creating a denial-of-service condition. The error code would need to be cleared prior to resuming normal operations. 2023-08-08 not yet calculated CVE-2023-2423
MISC wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in brandiD Social Proof (Testimonial) Slider plugin <= 2.2.3 versions. 2023-08-10 not yet calculated CVE-2023-24389
MISC wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Spider Teams ApplyOnline plugin <= 2.5 versions. 2023-08-10 not yet calculated CVE-2023-24391
MISC wordpress — wordpress
  Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Sk. Abul Hasan Animated Number Counters plugin <= 1.6 versions. 2023-08-10 not yet calculated CVE-2023-24393
MISC nozomi_networks — guardian
  An access control vulnerability was found, due to the restrictions that are applied on actual assertions not being enforced in their debug functionality. An authenticated user with reduced visibility can obtain unauthorized information via the debug functionality, obtaining data that would normally be not accessible in the Query and Assertions functions. 2023-08-09 not yet calculated CVE-2023-24471
MISC nozomi_networks — guardian/cmc
  In certain conditions, depending on timing and the usage of the Chrome web browser, Guardian/CMC versions before 22.6.2 do not always completely invalidate the user session upon logout. Thus an authenticated local attacker may gain acces to the original user’s session. 2023-08-09 not yet calculated CVE-2023-24477
MISC foswiki — foswiki
  Insufficient parameter validation in the Foswiki::Sandbox component of Foswiki v2.1.7 and below allows attackers to perform a directory traversal via supplying a crafted web request. 2023-08-08 not yet calculated CVE-2023-24698
MISC siemens — ruggedcom
  A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NC v2, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNC v2, RUGGEDCOM RS416Pv2, RUGGEDCOM RS416v2, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. The affected products insufficiently block data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior. 2023-08-08 not yet calculated CVE-2023-24845
MISC intel(r) — unite(r)_client_for_mac
  Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version 4.2.11 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-25182
MISC intel(r) — unison(tm)
  Improper access control in some Intel(R) Unison(TM) software before version 10.12 may allow a privileged user to potentially enable escalation of privilege via network access. 2023-08-11 not yet calculated CVE-2023-25757
MISC intel(r) — unite(r)_hub_for_windows
  Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-25773
MISC intel(r) — ethernet_controller_rdma_driver_for_linux
  Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access. 2023-08-11 not yet calculated CVE-2023-25775
MISC intel(r) — vcust_tool
  Uncontrolled search path element in some Intel(R) VCUST Tool software downloaded before February 3nd 2023 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-25944
MISC oppo — oneplus_store A remote code execution vulnerability in the webview component of OnePlus Store app. 2023-08-10 not yet calculated CVE-2023-26309
MISC oppo — oppo_find_x3 There is a command injection problem in the old version of the mobile phone backup app. 2023-08-09 not yet calculated CVE-2023-26310
MISC oppo — oppo_store A remote code execution vulnerability in the webview component of OPPO Store app. 2023-08-10 not yet calculated CVE-2023-26311
MISC intel(r) — easy_streaming_wizard
  Improper input validation for the Intel(R) Easy Streaming Wizard software may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-26587
MISC alteryx — server
  Alteryx Server 2022.1.1.42590 does not employ file type verification for uploaded files. This vulnerability allows attackers to upload arbitrary files by changing the extension of the uploaded file. 2023-08-08 not yet calculated CVE-2023-26961
MISC
MISC insyde — h20
  An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Due to insufficient input validation, an attacker can tamper with a runtime-accessible EFI variable to cause a dynamic BAR setting to overlap SMRAM. 2023-08-07 not yet calculated CVE-2023-27373
MISC intel(r) — oneapi_toolkit
  Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-27391
MISC intel(r) — support_android_application
  Incorrect default permissions in the Intel(R) Support android application before version v23.02.07 may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-27392
MISC intel(r) — advanced_link_analyzer_standard_edition
  Incorrect default permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installers before version 22.1 .1 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-27505
MISC intel(r) — optimization_for_tensorflow
  Improper buffer restrictions in the Intel(R) Optimization for Tensorflow software before version 2.12 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-27506
MISC intel(r) — ispc_software_installers
  Improper access control in some Intel(R) ISPC software installers before version 1.19.0 may allow an authenticated user to potentially enable escalation of privileges via local access. 2023-08-11 not yet calculated CVE-2023-27509
MISC intel(r) — dsa
  Cross-site scripting (XSS) for the Intel(R) DSA software before version 23.1.9 may allow unauthenticated user to potentially enable escalation of privilege via network access. 2023-08-11 not yet calculated CVE-2023-27515
MISC intel(r) — nuc
  Improper initialization in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-27887
MISC ivanti — desktop_&_server_management
  Desktop & Server Management (DSM) may have a possible execution of arbitrary commands. 2023-08-10 not yet calculated CVE-2023-28129
MISC intel(r) — ai_hackathon_software
  Uncontrolled search path for the Intel(R) AI Hackathon software before version 2.0.0 may allow an unauthenticated user to potentially enable escalation of privilege via network access. 2023-08-11 not yet calculated CVE-2023-28380
MISC intel(r) — nuc_pro_software_suite_for_windows
  Improper authorization in the Intel(R) NUC Pro Software Suite for Windows before version 2.0.0.9 may allow a privileged user to potentially enable escalation of privilage via local access. 2023-08-11 not yet calculated CVE-2023-28385
MISC intel(r) — vdistribution_of_openvino(tm)_toolkit
  Uncontrolled search path in the Intel(R) Distribution of OpenVINO(TM) Toolkit before version 2022.3.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-28405
MISC qualcomm_inc. — snapdragon
  The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. 2023-08-08 not yet calculated CVE-2023-28575
MISC qualcomm_inc. — snapdragon
  The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues. 2023-08-08 not yet calculated CVE-2023-28576
MISC qualcomm_inc. — snapdragon
  In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address. 2023-08-08 not yet calculated CVE-2023-28577
MISC intel(r) — onemkl
  Insecure inherited permissions in some Intel(R) oneMKL software before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-28658
MISC intel(r) — hyperscan_library
  Insufficient control flow management in the Hyperscan Library maintained by Intel(R) before version 5.4.1 may allow an authenticated user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-28711
MISC intel(r) — proset/wireless_wifi
  Improper access control in firmware for some Intel(R) PROSet/Wireless WiFi software for Windows before version 22.220 HF (Hot Fix) may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-28714
MISC intel(r) — ssd_tools
  Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-28736
MISC wordpress — wordpress Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Kolja Nolte Secondary Title plugin <= 2.0.9.1 versions. 2023-08-08 not yet calculated CVE-2023-28773
MISC wordpress — wordpress Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Vladimir Statsenko Terms descriptions plugin <= 3.4.4 versions. 2023-08-10 not yet calculated CVE-2023-28779
MISC intel(r) — oneapi_toolkit
  Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-28823
MISC siemens — solid_edge
  A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versions < V13.2.0.15), Teamcenter Visualization V13.3 (All versions < V13.3.0.11), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted ASM file. An attacker could leverage this vulnerability to execute code in the context of the current process. 2023-08-08 not yet calculated CVE-2023-28830
MISC intel(r) — ssd_tools
  Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-28938
MISC cesanta — mongoose
  Due to a failure in validating the length of a provided MQTT_CMD_PUBLISH parsed message with a variable length header, Cesanta Mongoose, an embeddable web server, version 7.10 is susceptible to a heap-based buffer overflow vulnerability in the default configuration. Version 7.9 and prior does not appear to be vulnerable. This issue is resolved in version 7.11. 2023-08-09 not yet calculated CVE-2023-2905
MISC
MISC
MISC intel(r) — psr_sdk
  Uncontrolled search path element in some Intel(R) PSR SDK before version 1.0.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-29151
MISC intel(r) — realsense(tm)_450_fa
  Unchecked return value in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow a priviledged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-29243
MISC intel(r) — nuc
  Improper input validation in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-29494
MISC intel(r) — nuc
  Exposure of sensitive information to an unauthorized actor in BIOS firmware for some Intel(R) NUCs may allow a privilege user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-29500
MISC wordpress — wordpress
  Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Alexey Golubnichenko AGP Font Awesome Collection plugin <= 3.2.4 versions. 2023-08-10 not yet calculated CVE-2023-30481
MISC samsung_mobile — samsung_mobile_devices
  Improper access control vulnerability in SLocationService prior to SMR Aug-2023 Release 1 allows local attacker to update fake location. 2023-08-10 not yet calculated CVE-2023-30654
MISC samsung_mobile — samsung_mobile_devices
  Improper access control in HDCP trustlet prior to SMR Aug-2023 Release 1 allows local attackers to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30679
MISC samsung_mobile — samsung_mobile_devices
  Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege. 2023-08-10 not yet calculated CVE-2023-30680
MISC samsung_mobile — samsung_mobile_devices
  An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. 2023-08-10 not yet calculated CVE-2023-30681
MISC samsung_mobile — samsung_mobile_devices
  Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission. 2023-08-10 not yet calculated CVE-2023-30682
MISC samsung_mobile — samsung_mobile_devices
  Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission. 2023-08-10 not yet calculated CVE-2023-30683
MISC samsung_mobile — samsung_mobile_devices
  Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission. 2023-08-10 not yet calculated CVE-2023-30684
MISC samsung_mobile — samsung_mobile_devices
  Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode. 2023-08-10 not yet calculated CVE-2023-30685
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30686
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30687
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30688
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30689
MISC samsung_mobile — samsung_mobile_devices
  Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation. 2023-08-10 not yet calculated CVE-2023-30691
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30693
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30694
MISC samsung_mobile — galaxy_book
  Out-of-bounds Write vulnerability in SSHDCPAPP TA prior to SAMSUNG ELECTONICS, CO, LTD. – System Hardware Update – 7/13/2023 in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30695
MISC samsung_mobile — samsung_mobile_devices
  An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. 2023-08-10 not yet calculated CVE-2023-30696
MISC samsung_mobile — samsung_mobile_devices
  An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. 2023-08-10 not yet calculated CVE-2023-30697
MISC samsung_mobile — samsung_mobile_devices
  Improper access control vulnerability in TelephonyUI prior to SMR Aug-2023 Release 1 allows local attacker to connect BLE without privilege. 2023-08-10 not yet calculated CVE-2023-30698
MISC samsung_mobile — samsung_mobile_devices
  Out-of-bounds write vulnerability in parser_hvcC function of libsimba library prior to SMR Aug-2023 Release 1 allows code execution by remote attackers. 2023-08-10 not yet calculated CVE-2023-30699
MISC samsung_mobile — samsung_mobile_devices PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permission. 2023-08-10 not yet calculated CVE-2023-30700
MISC samsung_mobile — samsung_mobile_devices
  PendingIntent hijacking in WifiGeofenceManager prior to SMR Aug-2023 Release 1 allows local attacker to arbitrary file access. 2023-08-10 not yet calculated CVE-2023-30701
MISC samsung_mobile — samsung_mobile_devices
  Stack overflow vulnerability in SSHDCPAPP TA prior to SAMSUNG ELECTONICS, CO, LTD. – System Hardware Update – 7/13/2023 in Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go and Galaxy book2 Pro 360 allows local attacker to execute arbitrary code. 2023-08-10 not yet calculated CVE-2023-30702
MISC samsung_mobile — samsung_mobile_devices
  Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows attackers to access sensitive information. 2023-08-10 not yet calculated CVE-2023-30703
MISC samsung_mobile — samsung_mobile_devices
  Improper Authorization vulnerability in Samsung Internet prior to version 22.0.0.35 allows physical attacker access downloaded files in Secret Mode without user authentication. 2023-08-10 not yet calculated CVE-2023-30704
MISC samsung_mobile — galaxy_store
  Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6 allows local attackers to access privileged content providers as Galaxy Store permission. 2023-08-10 not yet calculated CVE-2023-30705
MISC intel(r) — realsense(tm)_450_fa
  Out-of-bounds read in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-30760
MISC siemens — jt_open
  A vulnerability has been identified in JT Open (All versions < V11.4), JT Utilities (All versions < V13.4). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the context of the current process. 2023-08-08 not yet calculated CVE-2023-30796
MISC checkmk — checkmk
  Improper neutralization of active check command arguments in Checkmk < 2.1.0p32, < 2.0.0p38, < 2.2.0p4 leads to arbitrary command execution for authenticated users. 2023-08-10 not yet calculated CVE-2023-31209
MISC intel(r) — sdp_tool
  Incorrect default permissions in some Intel(R) SDP Tool software before version 1.4 build 5 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-31246
MISC arcsight — management_center
  A potential vulnerability has been identified in OpenText / Micro Focus ArcSight Management Center. The vulnerability could be remotely exploited. 2023-08-11 not yet calculated CVE-2023-32267
MISC intel(r) — nuc_bios
  Improper access control in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. 2023-08-11 not yet calculated CVE-2023-32285
MISC intel(r) — its
  Incorrect default permissions in the Intel(R) ITS sofware before version 3.1 may allow authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-32543
MISC intel(r) — falcon_8+
  Incorrect default permissions in the MAVinci Desktop Software for Intel(R) Falcon 8+ before version 6.2 may allow authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-32547
MISC ivanti — avalanche
  An attacker can send a specially crafted message to the Wavelink Avalanche Manager, which could result in service disruption or arbitrary code execution. Thanks to a Researcher at Tenable for finding and reporting. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32560
MISC ivanti — avalanche
  A previously generated artifact by an administrator could be accessed by an attacker. The contents of this artifact could lead to authentication bypass. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32561
MISC ivanti — avalanche
  An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32562
MISC ivanti — avalanche
  An unauthenticated attacker could achieve the code execution through a RemoteControl server. 2023-08-10 not yet calculated CVE-2023-32563
MISC ivanti — avalanche
  An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.4.1 and below that could allow an attacker to achieve a remove code execution. 2023-08-10 not yet calculated CVE-2023-32564
MISC ivanti — avalanche
  An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32565
MISC ivanti — avalanche
  An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32566
MISC ivanti — avalanche
  Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1. 2023-08-10 not yet calculated CVE-2023-32567
MISC intel(r) — unite(r)_android_application
  Improper access control in the Intel Unite(R) android application before version 4.2.3504 may allow an authenticated user to potentially enable information disclosure via local access. 2023-08-11 not yet calculated CVE-2023-32609
MISC intel(r) — multiple_products
  Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-32617
MISC intel(r) — realsense(tm)_450_fa
  Improper buffer restrictions in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-32656
MISC intel(r) — realsense(tm)_sdks
  Incorrect default permissions in some Intel(R) RealSense(TM) SDKs in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-32663
MISC zoho — manageengine_adaudit_plus
  The event analysis component in Zoho ManageEngine ADAudit Plus 7.1.1 allows an attacker to bypass audit detection by creating or renaming user accounts with a “$” symbol suffix. 2023-08-07 not yet calculated CVE-2023-32783
MISC gg_tss_implementations — wallet
  Crypto wallets implementing the GG18 or GG20 TSS protocol might allow an attacker to extract a full ECDSA private key by injecting a malicious pallier key and cheating in the range proof. Depending on the Beta parameters chosen in the protocol implementation, the attack might require 16 signatures or more fully exfiltrate the other parties’ private key shares. 2023-08-09 not yet calculated CVE-2023-33241
MISC
MISC
MISC
MISC
MISC lindell_tss_implementations — wallet
  Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper’s security proof’s assumption regarding handling aborts after a failed signature. 2023-08-09 not yet calculated CVE-2023-33242
MISC
MISC
MISC
MISC kramer_electronics — kramerav_via_connect/via_go
  KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly from the physical screen. 2023-08-09 not yet calculated CVE-2023-33468
MISC
MISC kramer_electronics — kramerav_via_connect/via_go
  In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level. 2023-08-09 not yet calculated CVE-2023-33469
MISC
MISC foswiki — foswiki
  An issue in the SpreadSheetPlugin component of Foswiki v2.1.7 and below allows attackers to execute a directory traversal. 2023-08-08 not yet calculated CVE-2023-33756
CONFIRM intel(r) — realsense(tm)_450_fa
  Improper buffer restrictions in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-33867
MISC intel(r) — realsense(tm)_450_fa
  Out-of-bounds write in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-33877
MISC apache — traffic_server
  Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. This issue affects Apache Traffic Server: through 9.2.1. 2023-08-09 not yet calculated CVE-2023-33934
MISC google — grpc
  gRPC contains a vulnerability that allows hpack table accounting errors could lead to unwanted disconnects between clients and servers in exceptional cases/ Three vectors were found that allow the following DOS attacks: – Unbounded memory buffering in the HPACK parser – Unbounded CPU consumption in the HPACK parser The unbounded CPU consumption is down to a copy that occurred per-input-block in the parser, and because that could be unbounded due to the memory copy bug we end up with an O(n^2) parsing loop, with n selected by the client. The unbounded memory buffering bugs: – The header size limit check was behind the string reading code, so we needed to first buffer up to a 4 gigabyte string before rejecting it as longer than 8 or 16kb. – HPACK varints have an encoding quirk whereby an infinite number of 0’s can be added at the start of an integer. gRPC’s hpack parser needed to read all of them before concluding a parse. – gRPC’s metadata overflow check was performed per frame, so that the following sequence of frames could cause infinite buffering: HEADERS: containing a: 1 CONTINUATION: containing a: 2 CONTINUATION: containing a: 3 etc… 2023-08-09 not yet calculated CVE-2023-33953
MISC sap_se — sap_business_one
  B1i module of SAP Business One – version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the application. 2023-08-08 not yet calculated CVE-2023-33993
MISC
MISC intel(r) — nuc_bios
  Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-34086
MISC intel(r) — nuc_bios
  Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-34349
MISC intel(r) — server_board_m10jnp2sb_integrated_bmc_video_drivers
  Uncontrolled search path element for some Intel(R) Server Board M10JNP2SB integrated BMC video drivers before version 3.0 for Microsoft Windows and before version 1.13.4 for linux may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-34355
MISC wordpress — wordpress
  Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Rahul Aryan AnsPress plugin <= 4.3.0 versions. 2023-08-10 not yet calculated CVE-2023-34374
MISC intel(r) — realsense(tm)_450_fa
  Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-34427
MISC intel(r) — nuc_bios
  Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. 2023-08-11 not yet calculated CVE-2023-34438
MISC ubiquiti_inc — unifi_access_points/switches
  An integer overflow vulnerability in all UniFi Access Points and Switches, excluding the Switch Flex Mini, with SNMP Monitoring and default settings enabled could allow a Remote Code Execution (RCE). Affected Products: All UniFi Access Points (Version 6.5.50 and earlier) All UniFi Switches (Version 6.5.32 and earlier) -USW Flex Mini excluded. Mitigation: Update UniFi Access Points to Version 6.5.62 or later. Update the UniFi Switches to Version 6.5.59 or later. 2023-08-10 not yet calculated CVE-2023-35085
MISC hashicorp — consul/consul_enterprise
  HashiCorp Consul and Consul Enterprise 1.16.0 when using JWT Auth for service mesh incorrectly allows/denies access regardless of service identities. Fixed in 1.16.1. 2023-08-09 not yet calculated CVE-2023-3518
MISC wireguard — wireguard
  The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into blocking IP traffic to selected IP addresses and services even while the VPN is enabled. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to “LocalNet attack resulting in the blocking of traffic” rather than to only WireGuard. 2023-08-09 not yet calculated CVE-2023-35838
MISC
MISC massachusetts_institute_of_technology — kerberos_5
  lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_data and the key_data array count. 2023-08-07 not yet calculated CVE-2023-36054
MISC
MISC
CONFIRM
MISC adiscon — aiscon_loganalyzer
  A Cross Site Scripting (XSS) vulnerability in Adiscon Aiscon LogAnalyzer through 4.1.13 allows a remote attacker to execute arbitrary code via the asktheoracle.php, details.php, index.php, search.php, export.php, reports.php, and statistics.php components. 2023-08-08 not yet calculated CVE-2023-36306
MISC diebold_nixdorf — vynamic_view_console
  An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature. 2023-08-08 not yet calculated CVE-2023-36344
MISC
MISC samsung_mobile — samsung_mobile_devices
  An issue was discovered in Samsung NFC S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82. A buffer copy without checking its input size can cause an NFC service restart. 2023-08-08 not yet calculated CVE-2023-36482
MISC wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Smartypants SP Project & Document Manager plugin <= 4.67 versions. 2023-08-10 not yet calculated CVE-2023-36530
MISC clario — vpn
  An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server’s IP address is sent in plaintext outside the VPN tunnel even if this traffic is not generated by the VPN client. This allows an adversary to trick the victim into sending plaintext traffic to the VPN server’s IP address and thereby deanonymize the victim. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to “ServerIP attack for only traffic to the real IP address of the VPN server” rather than to only Clario. 2023-08-09 not yet calculated CVE-2023-36671
MISC
MISC clario — vpn
  An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an adversary to trick the victim into sending arbitrary IP traffic in plaintext outside the VPN tunnel. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to “LocalNet attack resulting in leakage of traffic in plaintext” rather than to only Clario. 2023-08-09 not yet calculated CVE-2023-36672
MISC
MISC
MISC avira — phantom_vpn
  An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server’s IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by the VPN client, while simultaneously using plaintext DNS to look up the VPN server’s IP address. This allows an adversary to trick the victim into sending traffic to arbitrary IP addresses in plaintext outside the VPN tunnel. NOTE: the tunnelcrack.mathyvanhoef.com website uses this CVE ID to refer more generally to “ServerIP attack, combined with DNS spoofing, that can leak traffic to an arbitrary IP address” rather than to only Avira Phantom VPN. 2023-08-09 not yet calculated CVE-2023-36673
MISC
MISC sap_se — sap_powerdesigner
  SAP SQLA for PowerDesigner 17 bundled with SAP PowerDesigner 16.7 SP06 PL03, allows an attacker with local access to the system, to place a malicious library, that can be executed by the application. An attacker could thereby control the behavior of the application. 2023-08-08 not yet calculated CVE-2023-36923
MISC
MISC sap_se — sap_host_agent
  Due to missing authentication check in SAP Host Agent – version 7.22, an unauthenticated attacker can set an undocumented parameter to a particular compatibility value and in turn call read functions. This allows the attacker to gather some non-sensitive information about the server.  There is no impact on integrity or availability. 2023-08-08 not yet calculated CVE-2023-36926
MISC
MISC code-projects — gym_management_system
  Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password fields, enabling SQL Injection attacks. 2023-08-09 not yet calculated CVE-2023-37068
MISC code-projects — online_hospital_management_system
  Code-Projects Online Hospital Management System V1.0 is vulnerable to SQL Injection (SQLI) attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the login id and password fields during the login process, enabling an attacker to inject malicious SQL code. 2023-08-10 not yet calculated CVE-2023-37069
MISC
MISC wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Sudipto Pratap Mahato Simple Light Weight Social Share plugin <= 2.0 versions. 2023-08-10 not yet calculated CVE-2023-37388
MISC sap_se — sap_commerce
  Under certain conditions SAP Commerce (OCC API) – versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211, endpoints allow an attacker to access information which would otherwise be restricted. On successful exploitation there could be a high impact on confidentiality with no impact on integrity and availability of the application. 2023-08-08 not yet calculated CVE-2023-37486
MISC
MISC sap_se — sap_netweaver_process_integration
  In SAP NetWeaver Process Integration – versions SAP_XIESR 7.50, SAP_XITOOL 7.50, SAP_XIAF 7.50, user-controlled inputs, if not sufficiently encoded, could result in Cross-Site Scripting (XSS) attack. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of the system. 2023-08-08 not yet calculated CVE-2023-37488
MISC
MISC hcl_software — hcl_traveler_to_do
  If certain App Transport Security (ATS) settings are set in a certain manner, insecure loading of web content can be achieved. 2023-08-11 not yet calculated CVE-2023-37511
MISC hcl_software — hcl_traveler_companion
  When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. 2023-08-11 not yet calculated CVE-2023-37512
MISC hcl_software — hcl_traveler_to_do
  When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. 2023-08-11 not yet calculated CVE-2023-37513
MISC cacti — cacti
  Cacti before 1.2.6 allows IDOR (Insecure Direct Object Reference) for accessing any graph via a modified local_graph_id parameter to graph_xport.php. This is a different vulnerability than CVE-2019-16723. 2023-08-10 not yet calculated CVE-2023-37543
MISC
MISC netbox — netbox
  A stored cross-site scripting (XSS) vulnerability in Netbox v3.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Link templates. 2023-08-10 not yet calculated CVE-2023-37625
MISC
MISC
MISC bitberry — file_opener
  An issue in the CAB file extraction function of Bitberry File Opener v23.0 allows attackers to execute a directory traversal. 2023-08-08 not yet calculated CVE-2023-37646
MISC
MISC ez_softmagic — mp3_audio_converter
  EZ softmagic MP3 Audio Converter 2.7.3.700 was discovered to contain a buffer overflow. 2023-08-10 not yet calculated CVE-2023-37734
MISC
MISC wordpress — wordpress
  Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Noël Jackson Art Direction plugin <= 0.2.4 versions. 2023-08-10 not yet calculated CVE-2023-37983
MISC wordpress — wordpress
  Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Creative Solutions Contact Form Generator plugin <= 2.5.5 versions. 2023-08-10 not yet calculated CVE-2023-37988
MISC ubiquiti_inc — unifi_access_points/switches
  A command injection vulnerability in the DHCP Client function of all UniFi Access Points and Switches, excluding the Switch Flex Mini, could allow a Remote Code Execution (RCE). Affected Products: All UniFi Access Points (Version 6.5.53 and earlier) All UniFi Switches (Version 6.5.32 and earlier) -USW Flex Mini excluded. Mitigation: Update UniFi Access Points to Version 6.5.62 or later. Update UniFi Switches to Version 6.5.59 or later. 2023-08-10 not yet calculated CVE-2023-38034
MISC php_group — php
  In PHP versions 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8 various XML functions rely on libxml global state to track configuration variables, like whether external entities are loaded. This state is assumed to be unchanged unless the user explicitly changes it by calling appropriate function. However, since the state is process-global, other modules – such as ImageMagick – may also use this library within the same process, and change that global state for their internal purposes, and leave it in a state where external entities loading is enabled. This can lead to the situation where external XML is parsed with external entities loaded, which can lead to disclosure of any local files accessible to PHP. This vulnerable state may persist in the same process across many requests, until the process is shut down.  2023-08-11 not yet calculated CVE-2023-3823
MISC
MISC php_group — php
  In PHP version 8.0.* before 8.0.30,  8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.  2023-08-11 not yet calculated CVE-2023-3824
MISC
MISC zoho — manageengine_applications_manager
  Zoho ManageEngine Applications Manager through 16530 allows reflected XSS while logged in. 2023-08-10 not yet calculated CVE-2023-38333
CONFIRM wordpress — wordpress
  Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Eggemplo Gestion-Pymes plugin <= 1.5.6 versions. 2023-08-10 not yet calculated CVE-2023-38397
MISC snow_software — snow_license_manager Blind SQL injection in a service running in Snow Software license manager from version 8.0.0 up to and including 9.30.1 on Windows allows a logged in user with high privileges to inject SQL commands via the web portal. 2023-08-11 not yet calculated CVE-2023-3864
MISC siemens — sicam_toolbox_ii
  A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected application’s database service is executed as `NT AUTHORITYSYSTEM`. This could allow a local attacker to execute operating system commands with elevated privileges. 2023-08-08 not yet calculated CVE-2023-38641
MISC siemens — tecnomatix_plant_simulation
  A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21106) 2023-08-08 not yet calculated CVE-2023-38679
MISC siemens — tecnomatix_plant_simulation
  A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21132) 2023-08-08 not yet calculated CVE-2023-38680
MISC siemens — tecnomatix_plant_simulation
  A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted IGS file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21270) 2023-08-08 not yet calculated CVE-2023-38681
MISC siemens — jt2go/teamcenter_visualization
  A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Teamcenter Visualization V13.2 (All versions < V13.2.0.14), Teamcenter Visualization V14.1 (All versions < V14.1.0.10), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted TIFF files. This could allow an attacker to execute code in the context of the current process. 2023-08-08 not yet calculated CVE-2023-38682
MISC siemens — jt2go/teamcenter_visualization
  A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Teamcenter Visualization V13.2 (All versions < V13.2.0.14), Teamcenter Visualization V14.1 (All versions < V14.1.0.10), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted TIFF file. This could allow an attacker to execute code in the context of the current process. 2023-08-08 not yet calculated CVE-2023-38683
MISC japan_computer_emergency_response_team_coordination_center — special_interest_group_network_for_analysis_and_liaison Improper authorization vulnerability in Special Interest Group Network for Analysis and Liaison versions 4.4.0 to 4.7.7 allows the authorized API users to view the organization information of the information receiver that is set as “non-disclosure” in the information provision operation. 2023-08-09 not yet calculated CVE-2023-38751
MISC
MISC japan_computer_emergency_response_team_coordination_center — special_interest_group_network_for_analysis_and_liaison Improper authorization vulnerability in Special Interest Group Network for Analysis and Liaison versions 4.4.0 to 4.7.7 allows the authorized API users to view the attribute information of the poster that is set as”non-disclosure” in the system settings. 2023-08-09 not yet calculated CVE-2023-38752
MISC
MISC fasterxml — _jackson-dataformats-text Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. 2023-08-08 not yet calculated CVE-2023-3894
MISC
MISC
MISC opnsense — opnsense
  A directory traversal vulnerability in the Captive Portal templates of OPNsense before 23.7 allows attackers to execute arbitrary system commands as root via a crafted ZIP archive. 2023-08-09 not yet calculated CVE-2023-38997
MISC
MISC opnsense — opnsense
  An open redirect in the Login page of OPNsense before 23.7 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL. 2023-08-09 not yet calculated CVE-2023-38998
MISC
MISC opnsense — opnsense
  A Cross-Site Request Forgery (CSRF) in the System Halt API (/system/halt) of OPNsense before 23.7 allows attackers to cause a Denial of Service (DoS) via a crafted GET request. 2023-08-09 not yet calculated CVE-2023-38999
MISC
MISC opnsense — opnsense
  A reflected cross-site scripting (XSS) vulnerability in the component /ui/diagnostics/log/core/ of OPNsense before 23.7 allows attackers to inject arbitrary JavaScript via the URL path. 2023-08-09 not yet calculated CVE-2023-39000
MISC
MISC opnsense — opnsense
  A command injection vulnerability in the component diag_backup.php of OPNsense before 23.7 allows attackers to execute arbitrary commands via a crafted backup configuration file. 2023-08-09 not yet calculated CVE-2023-39001
MISC
MISC opnsense — opnsense
  A cross-site scripting (XSS) vulnerability in the act parameter of system_certmanager.php in OPNsense before 23.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. 2023-08-09 not yet calculated CVE-2023-39002
MISC
MISC opnsense — opnsense
  OPNsense before 23.7 was discovered to contain insecure permissions in the directory /tmp. 2023-08-09 not yet calculated CVE-2023-39003
MISC
MISC opnsense — opnsense
  Insecure permissions in the configuration directory (/conf/) of OPNsense before 23.7 allow attackers to access sensitive information (e.g., hashed root password) which could lead to privilege escalation. 2023-08-09 not yet calculated CVE-2023-39004
MISC
MISC opnsense — opnsense
  Insecure permissions exist for configd.socket in OPNsense before 23.7. 2023-08-09 not yet calculated CVE-2023-39005
MISC
MISC opnsense — opnsense
  The Crash Reporter (crash_reporter.php) component of OPNsense before 23.7 mishandles input sanitization. 2023-08-09 not yet calculated CVE-2023-39006
MISC
MISC opnsense — opnsense
  A command injection vulnerability in the component /api/cron/settings/setJob/ of OPNsense before 23.7 allows attackers to execute arbitrary system commands. 2023-08-09 not yet calculated CVE-2023-39008
MISC
MISC asus — rt-ac66u_b1
  ASUS RT-AC66U B1 3.0.0.4.286_51665 was discovered to transmit sensitive information in cleartext. 2023-08-08 not yet calculated CVE-2023-39086
MISC
MISC
MISC zoom — zoom_for_windows
  Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via network access. 2023-08-08 not yet calculated CVE-2023-39209
MISC zoom — zoom_for_windows
  Cleartext storage of sensitive information in Zoom Client SDK for Windows before 5.15.0 may allow an authenticated user to enable an information disclosure via local access. 2023-08-08 not yet calculated CVE-2023-39210
MISC zoom — zoom_for_windows
  Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access. 2023-08-08 not yet calculated CVE-2023-39211
MISC zoom — zoom_for_windows
  Untrusted search path in Zoom Rooms for Windows before version 5.15.5 may allow an authenticated user to enable a denial of service via local access. 2023-08-08 not yet calculated CVE-2023-39212
MISC zoom — zoom_for_windows
  Improper neutralization of special elements in Zoom Desktop Client for Windows and Zoom VDI Client before 5.15.2 may allow an unauthenticated user to enable an escalation of privilege via network access. 2023-08-08 not yet calculated CVE-2023-39213
MISC zoom — zoom
  Exposure of sensitive information in Zoom Client SDK’s before 5.15.5 may allow an authenticated user to enable a denial of service via network access. 2023-08-08 not yet calculated CVE-2023-39214
MISC siemens — ruggedcom
  A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100F, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M2200F, RUGGEDCOM M2200NC, RUGGEDCOM M969, RUGGEDCOM M969F, RUGGEDCOM M969NC, RUGGEDCOM RMC30, RUGGEDCOM RMC30NC, RUGGEDCOM RMC8388 V4.X, RUGGEDCOM RMC8388 V5.X, RUGGEDCOM RMC8388NC V4.X, RUGGEDCOM RMC8388NC V5.X, RUGGEDCOM RP110, RUGGEDCOM RP110NC, RUGGEDCOM RS1600, RUGGEDCOM RS1600F, RUGGEDCOM RS1600FNC, RUGGEDCOM RS1600NC, RUGGEDCOM RS1600T, RUGGEDCOM RS1600TNC, RUGGEDCOM RS400, RUGGEDCOM RS400F, RUGGEDCOM RS400NC, RUGGEDCOM RS401, RUGGEDCOM RS401NC, RUGGEDCOM RS416, RUGGEDCOM RS416F, RUGGEDCOM RS416NC, RUGGEDCOM RS416NC v2, RUGGEDCOM RS416P, RUGGEDCOM RS416PF, RUGGEDCOM RS416PNC, RUGGEDCOM RS416PNC v2, RUGGEDCOM RS416Pv2, RUGGEDCOM RS416v2, RUGGEDCOM RS8000, RUGGEDCOM RS8000A, RUGGEDCOM RS8000ANC, RUGGEDCOM RS8000H, RUGGEDCOM RS8000HNC, RUGGEDCOM RS8000NC, RUGGEDCOM RS8000T, RUGGEDCOM RS8000TNC, RUGGEDCOM RS900, RUGGEDCOM RS900 (32M) V4.X, RUGGEDCOM RS900 (32M) V5.X, RUGGEDCOM RS900F, RUGGEDCOM RS900G, RUGGEDCOM RS900G (32M) V4.X, RUGGEDCOM RS900G (32M) V5.X, RUGGEDCOM RS900GF, RUGGEDCOM RS900GNC, RUGGEDCOM RS900GNC(32M) V4.X, RUGGEDCOM RS900GNC(32M) V5.X, RUGGEDCOM RS900GP, RUGGEDCOM RS900GPF, RUGGEDCOM RS900GPNC, RUGGEDCOM RS900L, RUGGEDCOM RS900LNC, RUGGEDCOM RS900M-GETS-C01, RUGGEDCOM RS900M-GETS-XX, RUGGEDCOM RS900M-STND-C01, RUGGEDCOM RS900M-STND-XX, RUGGEDCOM RS900MNC-GETS-C01, RUGGEDCOM RS900MNC-GETS-XX, RUGGEDCOM RS900MNC-STND-XX, RUGGEDCOM RS900MNC-STND-XX-C01, RUGGEDCOM RS900NC, RUGGEDCOM RS900NC(32M) V4.X, RUGGEDCOM RS900NC(32M) V5.X, RUGGEDCOM RS900W, RUGGEDCOM RS910, RUGGEDCOM RS910L, RUGGEDCOM RS910LNC, RUGGEDCOM RS910NC, RUGGEDCOM RS910W, RUGGEDCOM RS920L, RUGGEDCOM RS920LNC, RUGGEDCOM RS920W, RUGGEDCOM RS930L, RUGGEDCOM RS930LNC, RUGGEDCOM RS930W, RUGGEDCOM RS940G, RUGGEDCOM RS940GF, RUGGEDCOM RS940GNC, RUGGEDCOM RS969, RUGGEDCOM RS969NC, RUGGEDCOM RSG2100, RUGGEDCOM RSG2100 (32M) V4.X, RUGGEDCOM RSG2100 (32M) V5.X, RUGGEDCOM RSG2100F, RUGGEDCOM RSG2100NC, RUGGEDCOM RSG2100NC(32M) V4.X, RUGGEDCOM RSG2100NC(32M) V5.X, RUGGEDCOM RSG2100P, RUGGEDCOM RSG2100PF, RUGGEDCOM RSG2100PNC, RUGGEDCOM RSG2200, RUGGEDCOM RSG2200F, RUGGEDCOM RSG2200NC, RUGGEDCOM RSG2288 V4.X, RUGGEDCOM RSG2288 V5.X, RUGGEDCOM RSG2288NC V4.X, RUGGEDCOM RSG2288NC V5.X, RUGGEDCOM RSG2300 V4.X, RUGGEDCOM RSG2300 V5.X, RUGGEDCOM RSG2300F, RUGGEDCOM RSG2300NC V4.X, RUGGEDCOM RSG2300NC V5.X, RUGGEDCOM RSG2300P V4.X, RUGGEDCOM RSG2300P V5.X, RUGGEDCOM RSG2300PF, RUGGEDCOM RSG2300PNC V4.X, RUGGEDCOM RSG2300PNC V5.X, RUGGEDCOM RSG2488 V4.X, RUGGEDCOM RSG2488 V5.X, RUGGEDCOM RSG2488F, RUGGEDCOM RSG2488NC V4.X, RUGGEDCOM RSG2488NC V5.X, RUGGEDCOM RSG907R, RUGGEDCOM RSG908C, RUGGEDCOM RSG909R, RUGGEDCOM RSG910C, RUGGEDCOM RSG920P V4.X, RUGGEDCOM RSG920P V5.X, RUGGEDCOM RSG920PNC V4.X, RUGGEDCOM RSG920PNC V5.X, RUGGEDCOM RSL910, RUGGEDCOM RSL910NC, RUGGEDCOM RST2228, RUGGEDCOM RST2228P, RUGGEDCOM RST916C, RUGGEDCOM RST916P. The web server of the affected devices contains a vulnerability that may lead to a denial of service condition. An attacker may cause total loss of availability of the web server, which might recover after the attack is over. 2023-08-08 not yet calculated CVE-2023-39269
MISC wordpress — wordpress
  Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Teplitsa of social technologies Leyka plugin <= 3.30.2 versions. 2023-08-10 not yet calculated CVE-2023-39314
MISC ffri_security_inc. — ffri_yarai
  “FFRI yarai”, “FFRI yarai Home and Business Edition” and their OEM products handle exceptional conditions improperly, which may lead to denial-of-service (DoS) condition. Affected products and versions are as follows: FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0, FFRI yarai Home and Business Edition version 1.4.0, InfoTrace Mark II Malware Protection (Mark II Zerona) versions 3.0.1 to 3.2.2, Zerona / Zerona PLUS versions 3.2.32 to 3.2.36, ActSecure versions 3.4.0 to 3.4.6 and 3.5.0, Dual Safe Powered by FFRI yarai version 1.4.1, EDR Plus Pack (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0), and EDR Plus Pack Cloud (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0). 2023-08-09 not yet calculated CVE-2023-39341
MISC
MISC
MISC
MISC
MISC
MISC freedomofpress — dangerzone
  Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI (`dangerzone-cli` command) logs output from the container where the file sanitization takes place, to the user’s terminal. Prior to version 0.4.2, if the container is compromised and can return attacker-controlled strings, then the attacker may be able to spoof messages in the user’s terminal or change the window title. Besides logging output from containers, it also logs the names of the files it sanitizes. If these files contain ANSI escape sequences, then the same issue applies. Dangerzone is predominantly a GUI application, so this issue should leave most of our users unaffected. Nevertheless, we always suggest updating to the newest version. This issue is fixed in Dangerzone 0.4.2. 2023-08-08 not yet calculated CVE-2023-39342
MISC
MISC
MISC snow_software — snow_license_manager
  Cross site scripting vulnerability in web portal in Snow Software License Manager from version 9.0.0 up to and including 9.30.1 on Windows allows an authenticated user with high privileges to trigger cross site scripting attack via the web browser 2023-08-11 not yet calculated CVE-2023-3937
MISC postgresql — postgresql
  IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:…@ inside a quoting construct (dollar quoting, ”, or “”). If an administrator has installed files of a vulnerable, trusted, non-bundled extension, an attacker with database-level CREATE privilege can execute arbitrary code as the bootstrap superuser. 2023-08-11 not yet calculated CVE-2023-39417
MISC
MISC
MISC postgresql — postgresql
  A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows. 2023-08-11 not yet calculated CVE-2023-39418
MISC
MISC
MISC
MISC siemens — solid_edge
  A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 7). The affected applications contain an out of bounds write past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the current process. 2023-08-08 not yet calculated CVE-2023-39419
MISC sap_se — sap_commerce_cloud
  SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase. 2023-08-08 not yet calculated CVE-2023-39439
MISC
MISC schneider_electric — gp-pro_ex_wingp
  A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause memory corruption when an authenticated user opens a tampered log file from GP-Pro EX. 2023-08-09 not yet calculated CVE-2023-3953
MISC getsentry — sentry
  Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 23.7.2, an attacker with sufficient client-side exploits could retrieve a valid access token for another user during the OAuth token exchange due to incorrect credential validation. The client ID must be known and the API application must have already been authorized on the targeted user account. Sentry SaaS customers do not need to take any action. Self-hosted installations should upgrade to version 23.7.2 or higher. There are no direct workarounds, but users should review applications authorized on their account and remove any that are no longer needed. 2023-08-09 not yet calculated CVE-2023-39531
MISC endojs — endo
  SES is a JavaScript environment that allows safe execution of arbitrary programs in Compartments. In version 0.18.0 prior to 0.18.7, 0.17.0 prior to 0.17.1, 0.16.0 prior to 0.16.1, 0.15.0 prior to 0.15.24, 0.14.0 prior to 0.14.5, an 0.13.0 prior to 0.13.5, there is a hole in the confinement of guest applications under SES that may manifest as either the ability to exfiltrate information or execute arbitrary code depending on the configuration and implementation of the surrounding host. Guest program running inside a Compartment with as few as no endowments can gain access to the surrounding host’s dynamic import by using dynamic import after the spread operator, like `{…import(arbitraryModuleSpecifier)}`. On the web or in web extensions, a Content-Security-Policy following ordinary best practices likely mitigates both the risk of exfiltration and execution of arbitrary code, at least limiting the modules that the attacker can import to those that are already part of the application. However, without a Content-Security-Policy, dynamic import can be used to issue HTTP requests for either communication through the URL or for the execution of code reachable from that origin. Within an XS worker, an attacker can use the host’s module system to the extent that the host has been configured. This typically only allows access to module code on the host’s file system and is of limited use to an attacker. Within Node.js, the attacker gains access to Node.js’s module system. Importing the powerful builtins is not useful except insofar as there are side-effects and tempered because dynamic import returns a promise. Spreading a promise into an object renders the promises useless. However, Node.js allows importing data URLs, so this is a clear path to arbitrary execution. Versions 0.18.7, 0.17.1, 0.16.1, 0.15.24, 0.14.5, and 0.13.5 contain a patch for this issue. Some workarounds are available. On the web, providing a suitably constrained Content-Security-Policy mitigates most of the threat. With XS, building a binary that lacks the ability to load modules at runtime mitigates the entirety of the threat. That will look like an implementation of `fxFindModule` in a file like `xsPlatform.c` that calls `fxRejectModuleFile`. 2023-08-08 not yet calculated CVE-2023-39532
MISC
MISC go-libp2p — go-libp2p
  go-libp2p is the Go implementation of the libp2p Networking Stack. Prior to versions 0.27.8, 0.28.2, and 0.29.1 malicious peer can use large RSA keys to run a resource exhaustion attack & force a node to spend time doing signature verification of the large key. This vulnerability is present in the core/crypto module of go-libp2p and can occur during the Noise handshake and the libp2p x509 extension verification step. To prevent this attack, go-libp2p versions 0.27.8, 0.28.2, and 0.29.1 restrict RSA keys to <= 8192 bits. To protect one’s application, it is necessary to update to these patch releases and to use the updated Go compiler in 1.20.7 or 1.19.12. There are no known workarounds for this issue. 2023-08-08 not yet calculated CVE-2023-39533
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC eprosima — fast-dds
  eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.10.0, 2.9.2, and 2.6.5, a malformed GAP submessage can trigger assertion failure, crashing FastDDS. Version 2.10.0, 2.9.2, and 2.6.5 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39534
MISC
MISC
MISC
MISC siemens — solid_edge
  A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 2). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted DWG file. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19562) 2023-08-08 not yet calculated CVE-2023-39549
MISC apache — airflow
  Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server. This issue affects Apache Airflow Drill Provider: before 2.4.3. It is recommended to upgrade to a version that is not affected. 2023-08-11 not yet calculated CVE-2023-39553
MISC
MISC
MISC icms — icms
  iCMS v7.0.16 was discovered to contain a SQL injection vulnerability via the where parameter at admincp.php. 2023-08-10 not yet calculated CVE-2023-39805
MISC
MISC
MISC icms — icms
  iCMS v7.0.16 was discovered to contain a SQL injection vulnerability via the bakupdata function. 2023-08-10 not yet calculated CVE-2023-39806
MISC
MISC
MISC libbitcoin — libbitcoin_explorer
  The cryptocurrency wallet entropy seeding mechanism used in Libbitcoin Explorer 3.0.0 through 3.6.0 is weak, aka the Milk Sad issue. The use of an mt19937 Mersenne Twister PRNG restricts the internal entropy to 32 bits regardless of settings. This allows remote attackers to recover any wallet private keys generated from “bx seed” entropy output and steal funds. (Affected users need to move funds to a secure new cryptocurrency wallet.) NOTE: the vendor’s position is that there was sufficient documentation advising against “bx seed” but others disagree. NOTE: this was exploited in the wild in June and July 2023. 2023-08-09 not yet calculated CVE-2023-39910
MISC
MISC
MISC
MISC
MISC eprosima — fast-dds
  eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5, a data submessage sent to PDP port raises unhandled `BadParamException` in fastcdr, which in turn crashes fastdds. Versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39945
MISC
MISC
MISC eprosima — fast-dds
  eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, heap can be overflowed by providing a PID_PROPERTY_LIST parameter that contains a CDR string with length larger than the size of actual content. In `eprosima::fastdds::dds::ParameterPropertyList_t::push_back_helper`, `memcpy` is called to first copy the octet’ized length and then to copy the data into `properties_.data`. At the second memcpy, both `data` and `size` can be controlled by anyone that sends the CDR string to the discovery multicast port. This can remotely crash any Fast-DDS process. Versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39946
MISC
MISC eprosima — fast-dds
  eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, even after the fix at commit 3492270, malformed `PID_PROPERTY_LIST` parameters cause heap overflow at a different program counter. This can remotely crash any Fast-DDS process. Versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39947
MISC
MISC eprosima — fast-dds
  eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.10.0 and 2.6.5, the `BadParamException` thrown by Fast CDR is not caught in Fast DDS. This can remotely crash any Fast DDS process. Versions 2.10.0 and 2.6.5 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39948
MISC
MISC
MISC eprosima — fast-dds eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.9.1 and 2.6.5, improper validation of sequence numbers may lead to remotely reachable assertion failure. This can remotely crash any Fast-DDS process. Versions 2.9.1 and 2.6.5 contain a patch for this issue. 2023-08-11 not yet calculated CVE-2023-39949
MISC
MISC
MISC opentelemetry — opentelemetry
  OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries for Java. OpenTelemetry Java Instrumentation prior to version 1.28.0 contains an issue related to the instrumentation of Java applications using the AWS SDK v2 with Amazon Simple Email Service (SES) v1 API. When SES POST requests are instrumented, the query parameters of the request are inserted into the trace `url.path` field. This behavior leads to the http body, containing the email subject and message, to be present in the trace request url metadata. Any user using a version before 1.28.0 of OpenTelemetry Java Instrumentation to instrument AWS SDK v2 call to SES’s v1 SendEmail API is affected. The e-mail content sent to SES may end up in telemetry backend. This exposes the e-mail content to unintended audiences. The issue can be mitigated by updating OpenTelemetry Java Instrumentation to version 1.28.0 or later. 2023-08-08 not yet calculated CVE-2023-39951
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 22.0.0 and prior to versions 22.2.10.13, 23.0.12.8, 24.0.12.4, 25.0.8, 26.0.3, and 27.0.1, a user can access files inside a subfolder of a groupfolder accessible to them, even if advanced permissions would block access to the subfolder. Nextcloud Server versions 25.0.8, 26.0.3, and 27.0.1 and Nextcloud Enterprise Server versions 22.2.10.13, 23.0.12.8, 24.0.12.4, 25.0.8, 26.0.3, and 27.0.1 contain a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39952
MISC
MISC
MISC
MISC nextcloud — oidc
  user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Starting in version 1.0.0 and prior to version 1.3.3, missing verification of the issuer would have allowed an attacker to perform a man-in-the-middle attack returning corrupted or known token they also have access to. user_oidc 1.3.3 contains a patch. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39953
MISC
MISC
MISC nextcloud — oidc
  user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Starting in version 1.0.0 and prior to version 1.3.3, an attacker that obtained at least read access to a snapshot of the database can impersonate the Nextcloud server towards linked servers. user_oidc 1.3.3 contains a patch. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39954
MISC
MISC
MISC nextcloud — notes
  Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a patch for the issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39955
MISC
MISC
MISC nextcloud — talk_android
  Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Prior to version 17.0.0, an unprotected intend allowed malicious third party apps to trick the Talk Android app into writing files outside of its intended cache directory. Nextcloud Talk Android version 17.0.0 has a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39957
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 22.0.0 and prior to versions 22.2.10.13, 23.0.12.8, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1, missing protection allows an attacker to brute force the client secrets of configured OAuth2 clients. Nextcloud Server versions 25.0.9, 26.0.4, and 27.0.1 and Nextcloud Enterprise Server versions 22.2.10.13, 23.0.12.8, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1 contain a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39958
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 25.0.0 and prior to versions 25.0.9, 26.0.4, and 27.0.1, unauthenticated users could send a DAV request which reveals whether a calendar or an address book with the given identifier exists for the victim. Nextcloud Server versions 25.0.9, 26.0.4, and 27.0.1 and Nextcloud Enterprise Server versions 25.0.9, 26.0.4, and 27.0.1 contain a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39959
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 24.0.4 and prior to versions 25.0.9, 26.0.4, and 27.0.1, when a folder with images or an image was shared without download permissions, the user could add the image inline into a text file and download it. Nextcloud Server versions 25.0.9, 26.0.4, and 27.0.1 and Nextcloud Enterprise Server versions 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1 contain a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39961
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 19.0.0 and prior to versions 19.0.13.10, 20.0.14.15, 21.0.9.13, 22.2.10.14, 23.0.12.8, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1, a malicious user could delete any personal or global external storage, making them inaccessible for everyone else as well. Nextcloud server versions 25.0.9, 26.0.4, and 27.0.1 and Nextcloud Enterprise Server versions 19.0.13.10, 20.0.14.15, 21.0.9.13, 22.2.10.14, 23.0.12.9, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1 contain a patch for this issue. As a workaround, disable app files_external. This also makes the external storage inaccessible but retains the configurations until a patched version has been deployed. 2023-08-10 not yet calculated CVE-2023-39962
MISC
MISC
MISC nextcloud — server
  Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. Starting in version 20.0.0 and prior to versions 20.0.14.15, 21.0.9.13, 22.2.10.14, 23.0.12.8, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1, a missing password confirmation allowed an attacker, after successfully stealing a session from a logged in user, to create app passwords for the victim. Nextcloud server versions 25.0.9, 26.0.4, and 27.0.1 and Nextcloud Enterprise Server versions 20.0.14.15, 21.0.9.13, 22.2.10.14, 23.0.12.9, 24.0.12.5, 25.0.9, 26.0.4, and 27.0.1 contain a patch for this issue. No known workarounds are available. 2023-08-10 not yet calculated CVE-2023-39963
MISC
MISC
MISC 1panel-dev — 1panel
  1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the `api/v1/file.go` file, there is a function called `LoadFromFile`, which directly reads the file by obtaining the requested path `parameter[path]`. The request parameters are not filtered, resulting in a background arbitrary file reading vulnerability. Version 1.5.0 has a patch for this issue. 2023-08-10 not yet calculated CVE-2023-39964
MISC
MISC 1panel-dev — 1panel
  1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may cause a large amount of information leakage. Version 1.5.0 has a patch for this issue. 2023-08-10 not yet calculated CVE-2023-39965
MISC
MISC 1panel-dev — 1panel
  1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the `api/v1/file.go` file, there is a function called `SaveContentthat,It `recieves JSON data sent by users in the form of a POST request. And the lack of parameter filtering allows for arbitrary file write operations. Version 1.5.0 contains a patch for this issue. 2023-08-10 not yet calculated CVE-2023-39966
MISC
MISC trailofbits — uthenticode
  uthenticode is a small cross-platform library for partially verifying Authenticode digital signatures. Version 1.0.9 of uthenticode hashed the entire file rather than hashing sections by virtual address, in violation of the Authenticode specification. As a result, an attacker could modify code within a binary without changing its Authenticode hash, making it appear valid from uthenticode’s perspective. Versions of uthenticode prior to 1.0.9 are not vulnerable to this attack, nor are versions in the 2.x series. By design, uthenticode does not perform full-chain validation. However, the malleability of signature verification introduced in 1.0.9 was an unintended oversight. The 2.x series addresses the vulnerability. Versions prior to 1.0.9 are also not vulnerable, but users are encouraged to upgrade rather than downgrade. There are no workarounds to this vulnerability. 2023-08-09 not yet calculated CVE-2023-39969
MISC
MISC
MISC trailofbits — uthenticode
  uthenticode is a small cross-platform library for partially verifying Authenticode digital signatures. Versions of uthenticode prior to the 2.x series did not check Extended Key Usages in certificates, in violation of the Authenticode X.509 certificate profile. As a result, a malicious user could produce a “signed” PE file that uthenticode would verify and consider valid using an X.509 certificate that isn’t entitled to produce code signatures (e.g., a SSL certificate). By design, uthenticode does not perform full-chain validation. However, the absence of EKU validation was an unintended oversight. The 2.0.0 release series includes EKU checks. There are no workarounds to this vulnerability. 2023-08-09 not yet calculated CVE-2023-40012
MISC
MISC
MISC openzeppelin — openzeppelin_contracts
  OpenZeppelin Contracts is a library for secure smart contract development. Starting in version 4.0.0 and prior to version 4.9.3, contracts using `ERC2771Context` along with a custom trusted forwarder may see `_msgSender` return `address(0)` in calls that originate from the forwarder with calldata shorter than 20 bytes. This combination of circumstances does not appear to be common, in particular it is not the case for `MinimalForwarder` from OpenZeppelin Contracts, or any deployed forwarder the team is aware of, given that the signer address is appended to all calls that originate from these forwarders. The problem has been patched in v4.9.3. 2023-08-10 not yet calculated CVE-2023-40014
MISC
MISC
MISC
MISC
MISC
MISC mongodb_inc. — mongodb_ops_manager
  In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation. 2023-08-08 not yet calculated CVE-2023-4009
MISC
MISC ntpsec — ntpsec
  ntpd will crash if the server is not NTS-enabled (no certificate) and it receives an NTS-enabled client request (mode 3). 2023-08-07 not yet calculated CVE-2023-4012
MISC
MISC
MISC
MISC openbsd — openbsd
  OpenBSD 7.3 before errata 014 is missing an argument-count bounds check in console terminal emulation. This could cause incorrect memory access and a kernel crash after receiving crafted DCS or CSI terminal escape sequences. 2023-08-10 not yet calculated CVE-2023-40216
MISC
MISC misp — misp
  MISP 2.4174 allows XSS in app/View/Events/index.ctp. 2023-08-10 not yet calculated CVE-2023-40224
MISC haproxy — haproxy
  HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers, violating RFC 9110 section 8.6. In uncommon cases, an HTTP/1 server behind HAProxy may interpret the payload as an extra request. 2023-08-10 not yet calculated CVE-2023-40225
MISC
MISC
MISC
MISC
MISC
MISC archimate_archi — archimate_archi
  An NTLM Hash Disclosure was discovered in ArchiMate Archi before 5.1.0. When parsing the XMLNS value of an ArchiMate project file, if the namespace does not match the expected ArchiMate URL, the parser will access the provided resource. If the provided resource is a UNC path pointing to a share server that does not accept a guest account, the host will try to authenticate on the share by using the current user’s session. NOTE: this issue occurs because Archi uses an unsafe configuration of the Eclipse Modeling Framework. 2023-08-10 not yet calculated CVE-2023-40235
MISC
MISC
MISC
MISC genians — genian_nac_v4.0
  Improper Authentication vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Functionality Misuse.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15. 2023-08-11 not yet calculated CVE-2023-40253
MISC genians — genian_nac_v4.0
  Download of Code Without Integrity Check vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Malicious Software Update.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15. 2023-08-11 not yet calculated CVE-2023-40254
MISC veritas — netbackup_snapshot_manager
  A vulnerability was discovered in Veritas NetBackup Snapshot Manager before 10.2.0.1 that allowed untrusted clients to interact with the RabbitMQ service. This was caused by improper validation of the client certificate due to misconfiguration of the RabbitMQ service. Exploiting this impacts the confidentiality and integrity of messages controlling the backup and restore jobs, and could result in the service becoming unavailable. This impacts only the jobs controlling the backup and restore activities, and does not allow access to (or deletion of) the backup snapshot data itself. This vulnerability is confined to the NetBackup Snapshot Manager feature and does not impact the RabbitMQ instance on the NetBackup primary servers. 2023-08-11 not yet calculated CVE-2023-40256
MISC empowerid — empowerid
  EmpowerID before 7.205.0.1 allows an attacker to bypass an MFA (multi factor authentication) requirement if the first factor (username and password) is known, because the first factor is sufficient to change an account’s email address, and the product would then send MFA codes to the new email address (which may be attacker-controlled). NOTE: this is different from CVE-2023-4177, which claims to be about “some unknown processing of the component Multi-Factor Authentication Code Handler” and thus cannot be correlated with other vulnerability information. 2023-08-11 not yet calculated CVE-2023-40260
MISC gitpython — gitpython
  GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439. 2023-08-11 not yet calculated CVE-2023-40267
MISC
MISC mattermost — mattermost
  Mattermost fails to delete the attachments when deleting a message in a thread allowing a simple user to still be able to access and download the attachment of a deleted message 2023-08-11 not yet calculated CVE-2023-4105
MISC mattermost — mattermost
  Mattermost fails to check if the requesting user is a guest before performing different actions to public playbooks, resulting a guest being able to view, join, edit, export and archive public playbooks. 2023-08-11 not yet calculated CVE-2023-4106
MISC mattermost — mattermost
  Mattermost fails to properly validate the requesting user permissions when updating a system admin, allowing a user manager to update a system admin’s details such as email, first name and last name. 2023-08-11 not yet calculated CVE-2023-4107
MISC mattermost — mattermost
  Mattermost fails to sanitize post metadata during audit logging resulting in permalinks contents being logged 2023-08-11 not yet calculated CVE-2023-4108
MISC linux — kernel
  A use-after-free flaw was found in net/sched/cls_fw.c in classifiers (cls_fw, cls_u32, and cls_route) in the Linux Kernel. This flaw allows a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue. 2023-08-10 not yet calculated CVE-2023-4128
MISC
MISC
MISC
MISC
MISC linux — kernel
  A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system. 2023-08-07 not yet calculated CVE-2023-4147
MISC
MISC
MISC
MISC linux — kernel
  A flaw was found in the Linux kernel’s TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The problem is that the following upstream commits – a096ccca6e50 (“tun: tun_chr_open(): correctly initialize socket uid”), – 66b2c338adce (“tap: tap_open(): correctly initialize socket uid”), pass “inode->i_uid” to sock_init_data_uid() as the last parameter and that turns out to not be accurate. 2023-08-07 not yet calculated CVE-2023-4194
MISC
MISC
MISC
MISC
MISC
MISC
MISC sourcecodester — doctors_appointment_system
  A vulnerability was found in SourceCodester Doctors Appointment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument useremail leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-236365 was assigned to this vulnerability. 2023-08-08 not yet calculated CVE-2023-4219
MISC
MISC
MISC zephyrproject-rtos — zephyr
  Potential buffer overflow vulnerabilities in the following locations: https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/drivers/usb/device/usb_dc_native_posix.c#L359 https://github.com/zephyrproject-rtos/zephyr/blob/main/subsys/usb/device/class/netusb/function_rndis… https://github.com/zephyrproject-rtos/zephyr/blob/main/subsys/usb/device/class/netusb/function_rndis.c#L841 2023-08-12 not yet calculated CVE-2023-4265
MISC linux — kernel
  A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stack variable, a local privileged attacker could use this flaw to overflow the kernel stack. 2023-08-09 not yet calculated CVE-2023-4273
MISC
MISC
MISC froxlor — froxlor
  Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0. 2023-08-11 not yet calculated CVE-2023-4304
MISC
MISC