Monthly Archive: May 2021

In multiple managed switches by WAGO in different versions it is possible to read out the password hashes of all Web-based Management users. Date published : 2021-05-13 https://cert.vde.com/en-us/advisories/vde-2021-013

In multiple managed switches by WAGO in different versions special crafted requests can lead to cookies being transferred to third parties. Date published : 2021-05-13 https://cert.vde.com/en-us/advisories/vde-2021-013

In multiple managed switches by WAGO in different versions the webserver cookies of the web based UI contain user credentials. Date published : 2021-05-13 https://cert.vde.com/en-us/advisories/vde-2021-013

In multiple managed switches by WAGO in different versions an attacker may trick a legitimate user to click a link to inject possible malicious code into the Web-Based Management. Date published : 2021-05-13 https://cert.vde.com/en-us/advisories/vde-2021-013

In multiple managed switches by WAGO in different versions the activated directory listing provides an attacker with the index of the resources located inside the directory. Date published : 2021-05-13 https://cert.vde.com/en-us/advisories/vde-2021-013

In Hilscher rcX RTOS versions prios to V2.1.14.1 the actual UDP packet length is not verified against the length indicated by the packet. This may lead to a denial of service of the affected...

IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration...

Specific versions of the MongoDB C# Driver may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when commands such as "saslStart",...

A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on the server it is deployed on. The highest threat from this vulnerability...

An out-of-bounds heap buffer access issue was found in the ARM Generic Interrupt Controller emulator of QEMU up to and including qemu 4.2.0on aarch64 platform. The issue occurs because while writing an interrupt ID...

A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges...

SonicWall Email Security Virtual Appliance version 10.0.9 and earlier versions contain a default username and a password that is used at initial setup. An attacker could exploit this transitional/temporary user account from the trusted...

The HTMLSanitizer class in html-sanitizer.ts in all released versions of the Aurelia framework 1.x repository is vulnerable to XSS. The sanitizer only attempts to filter SCRIPT elements, which makes it feasible for remote attackers...

A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell. Date published : 2021-05-13 https://github.com/woider/ArticleCMS/issues/8