According to its self-reported version, Cisco Unity Connection running on the report host is affected by an Arbitrary File Upload Vulnerability. Due to lack of authentication in a specific API and imp ...
Continue Reading
February 02, 2024
Security Advisory Description CVE-2024-20922 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affecte ...
Continue Reading
February 02, 2024
Security Advisory Description kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is reachable if an authenticated user can trigger an authorization-data handling f ...
Continue Reading
February 02, 2024
Security Advisory Description CVE-2024-20960 The cve record for the cve id does not exist. CVE-2024-20962 The cve record for the cve id does not exist. CVE-2024-20963 Vulnerability in the MySQL ...
Continue Reading
February 02, 2024
The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.10.29. This is due to missing or incorrect nonce validation on the r ...
Continue Reading
February 02, 2024
The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the register_reference() function in all versions up to, and inc ...
Continue Reading
February 02, 2024
The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause a cac ...
Continue Reading
February 02, 2024
Impacted Resources bref/src/Event/Http/Psr7Bridge.php:94-125 Description When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is ...
Continue Reading
February 02, 2024
Back to Main
