Monthly Archive: August 2021

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by...

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only...

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to allocate 100% CPU time on the target system depending on...

XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker to load and execute arbitrary code from a remote host only...

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of...

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field....

LedgerSMB does not sufficiently guard against being wrapped by other sites, making it vulnerable to ‘clickjacking’. This allows an attacker to trick a targetted user to execute unintended actions. Date published : 2021-08-23 https://huntr.dev/bounties/5664331d-f5f8-4412-8566-408f8655888a...

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) Date published : 2021-08-23 https://huntr.dev/bounties/ea181323-51f8-46a2-a60f-6a401907feb7 https://github.com/firefly-iii/firefly-iii/commit/f80178b1b2b7864d17500a131d570c353c9a26f6

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) Date published : 2021-08-23 https://huntr.dev/bounties/d32f3d5a-0738-41ba-89de-34f2a772de76 https://github.com/firefly-iii/firefly-iii/commit/06d319cd71b7787aa919b3ba1ccf51e4ade67712

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) Date published : 2021-08-23 https://huntr.dev/bounties/dd54c5a1-0d4a-4f02-a111-7ce4ddc67a4d https://github.com/firefly-iii/firefly-iii/commit/14cdce113e0eb8090d09066fcd2b5cf03b5ac84e

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure. Date...

LedgerSMB does not check the origin of HTML fragments merged into the browser’s DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and...

Adobe Media Encoder version 15.2 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the...

An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue was not carried forward to the APR 1.7.x branch, and hence...