Monthly Archive: March 2022

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. Date published : 2022-03-22 https://github.com/HaHarden/mybatis-plus-sql-Injection

tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1. Date published : 2022-03-22 https://github.com/appneta/tcpreplay/issues/715

CycloneDX BOM Repository Server is a bill of materials (BOM) repository server for distributing CycloneDX BOMs. CycloneDX BOM Repository Server before version 2.0.1 has an improper input validation vulnerability leading to path traversal. A...

PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API `pjmedia_sdp_print(),...

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. A vulnerability in versions prior to `17.0.0-alpha.6`, `16.0.6`, `15.3.5`, `14.2.4`, and `13.6.6` allows renderers to obtain access to a bluetooth...

Able to create an account with long password leads to memory corruption / Integer Overflow in GitHub repository microweber/microweber prior to 1.2.12. Date published : 2022-03-22 https://huntr.dev/bounties/db615581-d5a9-4ca5-a3e9-7a39eceaa424 https://github.com/microweber/microweber/commit/82be4f0b4729be870ccefdae99a04833f134aa6a

There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4. Date published : 2022-03-22 https://huntr.dev/bounties/d205c489-3266-4ac4-acb7-c8ee570887f7 https://github.com/star7th/showdoc/commit/bd792a89c0325836fbd64784f4c4117c0171416b

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0 Date published : 2022-03-22 https://kb.isc.org/v1/docs/cve-2022-0667

An access control issue in the authentication module of Lexar_F35 v1.0.34 allows attackers to access sensitive data and cause a Denial of Service (DoS). An attacker without access to securely protected data on a...

Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by incorrect access control. Lack of access control on the web manger pages allows any user to view and modify information. Date published : 2022-03-21 https://github.com/delikely/advisory/tree/main/GARO

Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by hard coded credentials. A hardcoded credential exist in /etc/tomcat8/tomcat-user.xml, which allows attackers to gain authorized access and control the tomcat completely on port 8000 in...

Multiple versions of GARO Wallbox GLB/GTB/GTC are affected by unauthenticated command injection. The url parameter of the function module downloadAndUpdate is vulnerable to an command Injection. Unfiltered user input is used to generate code...

The OPC autogenerated ANSI C stack stubs (in the NodeSets) do not handle all error cases. This can lead to a NULL pointer dereference. Date published : 2022-03-21 https://cert-portal.siemens.com/productcert/pdf/ssa-285795.pdf https://files.opcfoundation.org/SecurityBulletins/OPC%20Foundation%20Security%20Bulletin%20CVE-2021-45117.pdf

A Cross-Site Request Forgery (CSRF) in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL. Date published : 2022-03-21 CVE-2021-40662 Chamilo LMS 1.11.14 RCE https://febinj.medium.com/cve-2021-40662-chamilo-lms-1-11-14-rce-5301bad245d7