четвъртък, 16 март 2023 г.

Weekly Digest: a new vulnerability is published on the National Vulnerability Database (30 items)



New vulnerabilities from the NVD: CVE-2021-21708

In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTER_VALIDATE_FLOAT filter and min/max limits, if the filter fails, there is a possibility to trigger use of allocated memory after free, which can result it crashes, and potentially in overwrite of other memory chunks and RCE. This issue affects: code that uses FILTER_VALIDATE_FLOAT with min/max limits.
Published at: February 27, 2022 at 10:15AM
View on website

February 27, 2022 at 01:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-36510

The 15Zine WordPress theme before 3.3.0 does not sanitise and escape the cbi parameter before outputing it back in the response via the cb_s_a AJAX action, leading to a Reflected Cross-Site Scripting
Published at: February 28, 2022 at 11:15AM
View on website

February 28, 2022 at 01:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-22845

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service (DOS) via crafted FTP requests.
Published at: February 28, 2022 at 09:15PM
View on website

February 28, 2022 at 11:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-22844

A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service (DOS) via crafted SMB requests.
Published at: February 28, 2022 at 09:15PM
View on website

February 28, 2022 at 11:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-12775

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate service.
Published at: March 01, 2022 at 04:15AM
View on website

March 01, 2022 at 08:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-4925

A security vulnerability in the Spectrum Scale 5.0 and 5.1 allows a non-root user to overflow the mmfsd daemon with requests and preventing the daemon to service other requests. IBM X-Force ID: 191599.
Published at: March 01, 2022 at 07:15PM
View on website

March 01, 2022 at 09:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-15936

A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, version 5.6.13 and below allows attacker to disclose sensitive information via SNI Client Hello TLS packets.
Published at: March 01, 2022 at 09:15PM
View on website

March 01, 2022 at 11:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-23206

A flaw was found in htmldoc in v1.9.12 and prior. A stack buffer overflow in parse_table() in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
Published at: March 03, 2022 at 01:15AM
View on website

March 03, 2022 at 03:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-23192

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements.
Published at: March 03, 2022 at 01:15AM
View on website

March 03, 2022 at 03:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-23191

A security issue was found in htmldoc v1.9.12 and before. A NULL pointer dereference in the function image_load_jpeg() in image.cxx may result in denial of service.
Published at: March 03, 2022 at 01:15AM
View on website

March 03, 2022 at 03:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-23180

A flaw was found in htmldoc in v1.9.12 and before. Null pointer dereference in file_extension(),in file.c may lead to execute arbitrary code and denial of service.
Published at: March 03, 2022 at 01:15AM
View on website

March 03, 2022 at 03:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22695

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22694

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22693

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22692

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22691

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22690

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22689

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22688

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22687

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-22686

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
Published at: March 04, 2022 at 12:15AM
View on website

March 04, 2022 at 01:33AM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-23214

When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.
Published at: March 04, 2022 at 06:15PM
View on website

March 04, 2022 at 07:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-18327

Cross Site Scripting (XSS) vulnerability exists in Alfresco Alfresco Community Edition v5.2.0 via the action parameter in the alfresco/s/admin/admin-nodebrowser API. Fixed in v6.2
Published at: March 04, 2022 at 05:15PM
View on website

March 04, 2022 at 07:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-18326

Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.
Published at: March 04, 2022 at 05:15PM
View on website

March 04, 2022 at 07:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-18325

Multilple Cross Site Scripting (XSS) vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel.
Published at: March 04, 2022 at 05:15PM
View on website

March 04, 2022 at 07:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2020-18324

Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.1 via the q parameter in the Kickstart template.
Published at: March 04, 2022 at 05:15PM
View on website

March 04, 2022 at 07:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-20319

An improper signature verification vulnerability was found in coreos-installer. A specially crafted gzip installation image can bypass the image signature verification and as a consequence can lead to the installation of unsigned content. An attacker able to modify the original installation image can write arbitrary data, and achieve full access to the node being installed.
Published at: March 04, 2022 at 08:15PM
View on website

March 04, 2022 at 09:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-20303

A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, leading to an out-of-bounds write on the heap. The greatest impact of this flaw is to application availability, with some potential impact to data integrity as well.
Published at: March 04, 2022 at 08:15PM
View on website

March 04, 2022 at 09:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-20302

A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can submit a crafted single-part non-image to be processed by OpenEXR, to trigger a floating-point exception error. The highest threat from this vulnerability is to system availability.
Published at: March 04, 2022 at 08:15PM
View on website

March 04, 2022 at 09:33PM

via National Vulnerability Database


New vulnerabilities from the NVD: CVE-2021-20300

A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability.
Published at: March 04, 2022 at 08:15PM
View on website

March 04, 2022 at 09:33PM

via National Vulnerability Database


Няма коментари:

Публикуване на коментар