Security CERT Global

    • VU#434904: Dnsmasq is vulnerable to memory corruption and cache poisoning
      Overview Dnsmasq is vulnerable to a set of memory corruption issues handling DNSSEC data and a second set of issues validating DNS responses. These vulnerabilities could allow an attacker ... read more
    • CVE-2021-23123 (joomla!)
      An issue was discovered in Joomla! 3.0.0 through 3.9.23. The lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules. ... read more
    • CVE-2020-9139 (emui, magic_ui)
      There is a improper input validation vulnerability in some Huawei Smartphone.Successful exploit of this vulnerability can cause memory access errors and denial of service. ... read more
    • CVE-2020-9138 (emui, magic_ui)
      There is a heap-based buffer overflow vulnerability in some Huawei Smartphone, Successful exploit of this vulnerability can cause process exceptions during updating. ... read more
    • CVE-2021-21612 (tracetronic_ecu-test)
      Jenkins TraceTronic ECU-TEST Plugin 2.23.1 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the ... read more
    • CVE-2021-23124 (joomla!)
      An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks. ... read more
    • CVE-2020-27733
      Zoho ManageEngine Applications Manager before 14 build 14880 allows an authenticated SQL Injection via a crafted Alarmview request. ... read more
    • CVE-2021-3184
      MISP 2.4.136 has XSS via a crafted URL to the app/View/Elements/global_menu.ctp user homepage favourite button. ... read more
    • CVE-2020-4881
      IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the lack of server hostname verification for SSL/TLS communication. By sending a specially-crafted request, an ... read more
    • CVE-2021-22498
      XML External Entity Injection vulnerability in Micro Focus Application Lifecycle Management (Previously known as Quality Center) product. The vulnerability affects versions 12.x, 12.60 Patch 5 and earlier, 15.0.1 Patch 2 ... read more
    • CVE-2021-25324
      MISP 2.4.136 has Stored XSS in the galaxy cluster view via a cluster name to app/View/GalaxyClusters/view.ctp. ... read more
    • CVE-2020-4873
      IBM Planning Analytics 2.0 could allow an attacker to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 190836. ... read more
    • CVE-2021-25325
      MISP 2.4.136 has XSS via galaxy cluster element values to app/View/GalaxyElements/ajax/index.ctp. Reference types could contain javascript: URLs. ... read more
    • CVE-2021-25323
      The default setting of MISP 2.4.136 did not enable the requirements (aka require_password_confirmation) to provide the previous password when changing a password. ... read more
    • CERTFR-2021-AVI-039 : Vulnérabilité dans Juniper Junos OS (19 janvier 2021)
      Une vulnérabilité a été découverte dans Juniper Junos OS. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données. ... read more
    • Reolink P2P Cameras
      This advisory contains mitigations for Use of Hard-coded Cryptographic Key, and Cleartext Transmission of Sensitive Information vulnerabilities in Reolink camera devices using P2P. ... read more
    • Dnsmasq by Simon Kelley
      This advisory contains mitigations for Heap-based Buffer Overflow, Insufficient Verification of Data Authenticity, and Use of a Broken or Risky Cryptographic Algorithm vulnerabilities in Dnsmasq open-source software. ... read more
    • Philips Interventional Workstations
      This advisory contains mitigations for an OS Command Injection vulnerability in Philips Interventional Workstation software products. ... read more
    • Genomgång av CERT-SE CTF2020
      Inför cybersäkerhetsmånaden 2020 släppte CERT-SE en utmaning, CTF (Capture The Flag). Här följer ett förslag på lösning. Utmaningen gick ut på att i en dump av nätverkstrafik hitta en "flagga". ... read more
    • CVE-2020-35129
      Mautic before 3.2.4 is affected by stored XSS. An attacker with access to Social Monitoring, an application feature, could attack other users, including administrators. For example, an attacker could load ... read more
    • CVE-2020-23342
      A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that can change the Delete admin users. ... read more
    • CVE-2020-23522
      Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data [Password] parameter. ... read more
    • CVE-2020-20950
      Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26. The vulnerability can allow one to use Bleichenbacher's oracle attack to ... read more
    • CVE-2020-35128
      Mautic before 3.2.4 is affected by stored XSS. An attacker with permission to manage companies, an application feature, could attack other users, including administrators. For example, by loading an externally ... read more
    • CVE-2021-21605 (jenkins)
      Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows users with Agent/Configure permission to choose agent names that cause Jenkins to override the global `config.xml` file. ... read more
    • CVE-2020-9143 (emui, magic_ui)
      There is a missing authentication vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability may lead to low-sensitive information exposure. ... read more
    • CVE-2020-9142 (emui, magic_ui)
      There is a heap base buffer overflow vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability can cause heap overflow and memory overwriting when the system incorrectly processes the update ... read more
    • CVE-2020-9140 (emui, magic_ui)
      There is a vulnerability with buffer access with incorrect length value in some Huawei Smartphone.Unauthorized users may trigger code execution when a buffer overflow occurs. ... read more
    • CVE-2020-9141 (emui, magic_ui)
      There is a improper privilege management vulnerability in some Huawei smartphone. Successful exploitation of this vulnerability can cause information disclosure and malfunctions due to insufficient verification of data authenticity. ... read more
    • CVE-2020-28472
      This affects the package @aws-sdk/shared-ini-file-loader before 1.0.0-rc.9; the package aws-sdk before 2.814.0. If an attacker submits a malicious INI file to an application that parses it with loadSharedConfigFiles , they ... read more
    • CVE-2020-28477
      This affects all versions of package immer. ... read more
    • CVE-2020-28478
      This affects the package gsap before 3.6.0. ... read more
    • Apache udsender advisory til Tomcat
      Apache Software Foundation har frigivet en advisory til håndtering af en sårbarhed, der påvirker flere versioner af Apache Tomcat. En angriber kan udnytte sårbarheden til at få adgang til følsomme ... read more
    • CVE-2021-3177
      Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, ... read more
    • CVE-2021-3178
      ** DISPUTED ** fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts ... read more
    • CVE-2021-22852
      HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter (online registration) to obtain database schema and data. ... read more
    • CVE-2021-22850
      HGiga EIP product lacks ineffective access control in certain pages that allow attackers to access database or perform privileged functions. ... read more
    • CVE-2021-22851
      HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter (document management page) to obtain database schema and data. ... read more
    • Un actor de amenazas compromete un certificado de Mimecast
      Fecha de publicación: 12/01/2021 El proveedor de software de gestión de correo electrónico, Mimecast, ha informado de que uno de sus certificados emitidos, destinado a autenticar sus productos Mimecast ... read more
    • A threat actor commits a Mimecast certificate
      Publication date: 01/12/2021 The email management software provider, Mimecast, has reported that one of its issued certificates, intended to authenticate its Mimecast Sync and Recover, Continuity Monitor and IEP ... read more
    • Sårbarheder i Siemens produktudviklingsløsninger
      Siemens har i sidste uge orienteret kunderne om, at nogle af dets produktudviklingsløsninger er påvirket af en række sårbarheder, der kan udnyttes til afvikling af vilkårlig kode ved hjælp af ... read more
    • Vulnerability Scanning Tools and Services
      Advice on the choice, implementation and use of automated vulnerability scanning tools for organisations of all sizes. ... read more
    • Vulnerability Scanning: Keeping on top of the most common threats
      Vulnerability Scanning solutions offer a cost-effective way to discover and manage common security issues. ... read more
    • CVE-2021-20619
      Cross-site scripting vulnerability in GROWI (v4.2 Series) versions prior to v4.2.3 allows remote attackers to inject an arbitrary script via unspecified vectors. ... read more
    • CVE-2020-29450
      Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the avatar upload feature. The ... read more
    • ESB-2020.1110.2 – UPDATE [Win][UNIX/Linux] Ruby: Multiple vulnerabilities
      -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2020.1110.2 Ruby: Heap exposure vulnerability in the socket library 19 January 2021 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- ... read more
    • お知らせ:JPCERT/CC Eyes「攻撃グループLazarusが侵入したネットワーク内で使用するツール」
    • GROWI vulnerable to cross-site scripting
      GROWI contains a cross-site scripting vulnerability. ... read more
    • JVN: GROWI におけるクロスサイトスクリプティングの脆弱性
      GROWI には、クロスサイトスクリプティングの脆弱性が存在します。続きを読む ... read more
    • Commonly Known Tools Used by Lazarus
      It is widely known that attackers use Windows commands and tools that are commonly known and used after intruding their target network. Lazarus attack group, a.k.a. Hidden Cobra, also uses ... read more

Artificial Intelligence in Business Gets Real – Pioneering Companies Aim for AI at Scale – MIT