Monthly Archive: December 2017

In Apache Struts 2.5 to 2.5.14, the REST Plugin is using an outdated JSON-lib library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted JSON payload. Date published...

In Apache Qpid Broker-J 0.18 through 0.32, if the broker is configured with different authentication providers on different ports one of which is an HTTP port, then the broker can be tricked by a...

In Apache Qpid Broker-J versions 6.1.0 through 6.1.4 (inclusive) the broker does not properly enforce a maximum frame size in AMQP 1.0 frames. A remote unauthenticated attacker could exploit this to cause the broker...

Inedo Otter before 1.7.4 has directory traversal in filesystem-based rafts via vectors involving ‘/’ characters or initial ‘.’ characters, aka OT-181. Date published : 2017-12-01 https://inedo.com/blog/otter-174-released https://inedo.myjetbrains.com/youtrack/issue/OT-181

The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself. Date published : 2017-12-01 https://www.arqbackup.com/download/arq5_release_notes.html https://www.exploit-db.com/exploits/43218/

** DISPUTED ** HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption...

The OhMiBod Remote app for Android and iOS allows remote attackers to impersonate users by sniffing network traffic for search responses from the OhMiBod API server and then editing the username, user_id, and token...

The Vibease Wireless Remote Vibrator app for Android and the Vibease Chat app for iOS use cleartext to exchange messages with other apps and the PLAIN SASL mechanism to send auth tokens to Vibease...

Password file exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to execute arbitrary commands with administrative privileges by retrieving credentials from this file. Date published : 2017-12-01 Public Disclosure: Firmware...

Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key. Date published : 2017-12-01 Public Disclosure: Firmware Vulnerabilities in iSmartAlarm CubeOne

Adobe ColdFusion has an XML external entity (XXE) injection vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11. Date published : 2017-12-01 http://www.securityfocus.com/bid/100715...

Adobe ColdFusion has a cross-site scripting (XSS) vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11. Date published : 2017-12-01 http://www.securityfocus.com/bid/100711 https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11. Date published : 2017-12-01 http://www.securityfocus.com/bid/100708 https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html

Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11. Date published : 2017-12-01 http://www.securityfocus.com/bid/100708 https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html