Monthly Archive: September 2021

An improper access control vulnerability in GitHub Enterprise Server allowed a workflow job to execute in a self-hosted runner group it should not have had access to. This affects customers using self-hosted runner groups...

A path traversal vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration options used by GitHub Pages were not sufficiently restricted and made it...

There is an information leak vulnerability in the message service app of a ZTE mobile phone. Due to improper parameter settings, attackers could use this vulnerability to obtain some sensitive information of users by...

Gradle Enterprise before 2021.1.3 can allow unauthorized viewing of a response (information disclosure of possibly sensitive build/configuration details) via a crafted HTTP request with the X-Gradle-Enterprise-Ajax-Request header. Date published : 2021-09-23 https://security.gradle.com/advisory/2021-02

vpn-user-portal (aka eduVPN or Let’s Connect!) before 2.3.14, as packaged for Debian 10, Debian 11, and Fedora, allows remote authenticated users to obtain OS filesystem access, because of the interaction of QR codes with...

x509_constraints_parse_mailbox in lib/libcrypto/x509/x509_constraints.c in LibreSSL through 3.4.0 has a stack-based buffer over-read. When the input exceeds DOMAIN_PART_MAX_LEN, the buffer lacks ‘’ termination. Date published : 2021-09-23 https://github.com/libressl-portable/openbsd/issues/126

Payara Micro Community 5.2021.6 and below allows Directory Traversal. Date published : 2021-09-23 http://packetstormsecurity.com/files/164365/Payara-Micro-Community-5.2021.6-Directory-Traversal.html https://github.com/Net-hunter121/CVE-2021-41381/blob/main/CVE:%202021-41381-POC

Elvish is a programming language and interactive shell, combined into one package. In versions prior to 0.14.0 Elvish’s web UI backend (started by `elvish -web`) hosts an endpoint that allows executing the code sent...

IBM Jazz for Service Management 1.1.3.10 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...

IBM Aspera Cloud is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...

IBM Security Verify Bridge 1.0.5.0 could allow a user to obtain sensitive information due to improper certificate validation. IBM X-Force ID: 208155. Date published : 2021-09-23 https://www.ibm.com/support/pages/node/6491651 https://exchange.xforce.ibmcloud.com/vulnerabilities/208155

IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a locally authenticated user. IBM X-Force ID: 208154. Date published : 2021-09-23 https://www.ibm.com/support/pages/node/6491653 https://exchange.xforce.ibmcloud.com/vulnerabilities/208154

OpenVPN Access Server 2.9.0 through 2.9.4 allow remote attackers to inject arbitrary web script or HTML via the web login page URL. Date published : 2021-09-23 https://openvpn.net/vpn-server-resources/release-notes/#openvpn-access-server-2-9-5

Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress iQ Block Country plugin (versions