Security CERT Global

    • CVE-2021-22365
      There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due ... read more
    • CVE-2021-22366
      There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An ... read more
    • CVE-2021-0508 (android)
      In various functions of DrmPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges ... read more
    • CVE-2020-21130 (hisiphp)
      Cross Site Scripting (XSS) vulnerability in HisiPHP 2.0.8 via the group name in addgroup.html. ... read more
    • CVE-2020-7864 (dext5_editor)
      Parameter manipulation can bypass authentication to cause file upload and execution. This will execute the remote code. This issue affects: Raonwiz DEXT5Editor versions prior to 3.5.1405747.1100.03. ... read more
    • CVE-2020-20444 (openclinic)
      Jact OpenClinic 0.8.20160412 allows the attacker to read server files after login to the the admin account by an infected 'file' GET parameter in '/shared/view_source.php' which "could" lead to RCE ... read more
    • CVE-2020-18654
      Cross Site Scripting (XSS) in Wuzhi CMS v4.1.0 allows remote attackers to execute arbitrary code via the "Title" parameter in the component "/coreframe/app/guestbook/myissue.php". ... read more
    • CODESYS Control V2 Linux SysFile library
      This advisory contains mitigations for an OS Command Injection vulnerability in CODESYS V2 Runtime Toolkit software. ... read more
    • CODESYS V2 web server
      This advisory contains mitigations for Stack-based Buffer Overflow, Improper Access Control, Buffer Copy without Checking Size of Input, Improperly Implemented Security Check, Out-of-bounds Write, and Out-of-bounds Read vulnerabilities in CODESYS V2 ... read more
    • Advantech WebAccess HMI Designer
      This advisory contains mitigation for Heap-based Buffer overflow, Out-of-bounds Write, and Improper Restriction of Operation Within the Bounds of a Memory Buffer  vulnerabilities in the Advantech WebAccess HMI Designer. ... read more
    • CODESYS Control V2 communication
      This advisory contains mitigations for Stack-based Buffer Overflow, Heap-based Buffer Overflow, and Improper Input Validation vulnerabilities in CODESYS V2 runtime systems software  ... read more
    • CVE-2020-22168
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmschange-emaild.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22169
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsappointment-history.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2021-35206
      Gitpod before 0.6.0 allows unvalidated redirects. ... read more
    • CVE-2020-18647
      Information Disclosure in NoneCMS v1.3 allows remote attackers to obtain sensitive information via the component "/nonecms/vendor". ... read more
    • CVE-2020-22165
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsuser-login.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22173
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsedit-profile.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22167
      PHPGurukul Hospital Management System in PHP v4.0 has a Persistent Cross-Site Scripting vulnerability in hmsadminappointment-history.php. Remote registered users can exploit the vulnerability to obtain user cookie data. ... read more
    • CVE-2010-4264
      It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side. ... read more
    • CVE-2020-18648
      Cross Site Request Forgery (CSRF) in JuQingCMS v1.0 allows remote attackers to gain local privileges via the component "JuQingCMS_v1.0/admin/index.php?c=administrator&a=add". ... read more
    • CVE-2020-22166
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsforgot-password.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22175
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsadminbetweendates-detailsreports.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-15732
      Improper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an attacker to potentially bypass HTTP Strict Transport Security (HSTS) checks. This issue ... read more
    • CVE-2020-22172
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsget_doctor.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-18646
      Information Disclosure in NoneCMS v1.3 allows remote attackers to obtain sensitive information via the component "/public/index.php". ... read more
    • CVE-2020-22176
      PHPGurukul Hospital Management System in PHP v4.0 has a sensitive information disclosure vulnerability in multiple areas. Remote unauthenticated users can exploit the vulnerability to obtain user sensitive information. ... read more
    • CVE-2021-34428
      For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, if an exception is thrown from the SessionListener#sessionDestroyed() method, then the session ID is not invalidated in the session ID ... read more
    • CVE-2020-22171
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsregistration.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22164
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmscheck_availability.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22174
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsbook-appointment.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2020-22170
      PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in hmsget_doctor.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information. ... read more
    • CVE-2021-21668 (scriptler)
      Jenkins Scriptler Plugin 3.1 and earlier does not escape script content, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission. ... read more
    • CVE-2020-29215 (employee_management_system)
      A Cross Site Scripting in SourceCodester Employee Management System 1.0 allows the user to execute alert messages via /Employee Management System/addemp.php on admin account. ... read more
    • CVE-2021-21667 (scriptler)
      Jenkins Scriptler Plugin 3.2 and earlier does not escape parameter names shown in job configuration forms, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission. ... read more
    • CERTFR-2021-AVI-478 : Multiples vulnérabilités dans les produits Symantec (22 juin 2021)
      De multiples vulnérabilités ont été découvertes dans les produits Symantec. Elles permettent à un attaquant de provoquer un déni de service et un contournement de la politique de sécurité. ... read more
    • CVE-2021-0547
      In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. This could lead to local ... read more
    • CVE-2021-0551
      In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote ... read more
    • CVE-2021-0543
      In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. ... read more
    • CVE-2021-0544
      In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges ... read more
    • CVE-2021-0607
      In iaxxx_calc_i2s_div of iaxxx-codec.c, there is a possible hardware port write with user controlled data due to a missing bounds check. This could lead to local escalation of privilege with ... read more
    • CVE-2021-0537
      In onCreate of WiFiInstaller.java, there is a possible way to install a malicious Hotspot 2.0 configuration due to a tapjacking/overlay attack. This could lead to local escalation of privilege with ... read more
    • CVE-2021-0608
      In handleAppLaunch of AppLaunchActivity.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. ... read more
    • CVE-2021-0542
      In updateNotification of BeamTransferManager.java, there is a missing permission check. This could lead to local information disclosure of paired Bluetooth addresses with no additional execution privileges needed. User interaction is ... read more
    • CVE-2021-0545
      In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server ... read more
    • CVE-2021-0550
      In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of privilege with ... read more
    • CVE-2010-3446
      ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: ... read more
    • CVE-2021-0548
      In rw_i93_send_to_lower of rw_i93.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution ... read more
    • CVE-2021-0539
      In archiveStoredConversation of MmsService.java, there is a possible way to archive message conversation without user consent due to a missing permission check. This could lead to local escalation of privilege ... read more
    • CVE-2021-0605
      In pfkey_dump of af_key.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges ... read more
    • CVE-2021-0540
      In halWrapperDataCallback of hal_wrapper.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges ... read more

Building Innovative Public-Private-Partnerships for Effective and Equitable WSS Services – Project Financing

Tags: