Red Hat Security Advisory 2020-4167-01
Red Hat Security Advisory 2020-4167-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual...
View ArticleRed Hat Security Advisory 2020-4172-01
Red Hat Security Advisory 2020-4172-01 - The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and...
View ArticleSQLMAP - Automatic SQL Injection Tool 1.4.10
sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL...
View ArticleGRR 3.4.2.3
GRR Rapid Response is an incident response framework focused on remote live forensics. The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly...
View ArticleRed Hat Security Advisory 2020-4173-01
Red Hat Security Advisory 2020-4173-01 - The jackson-databind package provides general data-binding functionality for Jackson, which works on top of Jackson core streaming API.
View ArticleRed Hat Security Advisory 2020-4174-01
Red Hat Security Advisory 2020-4174-01 - MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL.
View ArticleUbuntu Security Notice USN-4569-1
Ubuntu Security Notice 4569-1 - It was discovered that Yaws did not properly sanitize XML input. A remote attacker could use this vulnerability to execute an XML External Entity injection attack. It...
View ArticleRocketLinx Series Authentication Bypass / CSRF / Command Injection
RocketLinx Series suffers from unauthenticated device administration, backdoor account, cross site request forgery, command injection, and unauthenticated tftp action vulnerabilities. Multiple versions...
View ArticleSpamTitan 7.07 Remote Code Execution
SpamTitan version 7.07 suffers from an unauthenticated remote code execution vulnerability in snmp-x.php.
View ArticleUbuntu Security Notice USN-4568-1
Ubuntu Security Notice 4568-1 - It was discovered that Brotli incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash.
View ArticleUbuntu Security Notice USN-4570-1
Ubuntu Security Notice 4570-1 - It was discovered that urllib3 incorrectly handled certain character sequences. A remote attacker could possibly use this issue to perform CRLF injection.
View ArticleUbuntu Security Notice USN-4571-1
Ubuntu Security Notice 4571-1 - It was discovered that rack-cors did not properly handle relative file paths. An attacker could use this vulnerability to access arbitrary files.
View ArticleRed Hat Security Advisory 2020-4176-01
Red Hat Security Advisory 2020-4176-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual...
View ArticleRestaurant Reservation System 1.0 SQL Injection
Restaurant Reservation System version 1.0 suffers from an authenticated remote SQL injection vulnerability.
View ArticleGAEN Protocol Metadata Deanonymization / Risk-Score Inflation
The TX Power value in the metadata in the beacon of the GAEN protocol used by the corona/contact tracing app allows for attackers to influence risk-score calculations in their favor and the same...
View Article