Monthly Archive: April 2022

An issue was discovered in MISP before 2.4.158. There is XSS in the cerebrate view if one administrator puts a javascript: URL in the URL field, and another administrator clicks on it. Date published...

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name. Date published : 2022-04-20 https://github.com/MISP/MISP/commit/bb3b7a7e91862742cae228c43b3091bad476dcc0 https://github.com/MISP/MISP/compare/v2.4.157…v2.4.158

An issue was discovered in MISP before 2.4.158. There is stored XSS in the galaxy clusters. Date published : 2022-04-20 https://github.com/MISP/MISP/commit/107e271d78c255d658ce998285fe6f6c4f291b41 https://github.com/MISP/MISP/compare/v2.4.157…v2.4.158

An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field. Date published : 2022-04-20 https://github.com/MISP/MISP/commit/9623de2f5cca011afc581d55cfa5ce87682894fd https://github.com/MISP/MISP/compare/v2.4.157…v2.4.158

An issue was discovered in MISP before 2.4.158. PHAR deserialization can occur. Date published : 2022-04-20 https://github.com/MISP/MISP/commit/0108f1bde2117ac5c1e28d124128f60c8bb09a8e https://github.com/MISP/MISP/commit/93821c0de6a7dd32262ce62212773f43136ca66e

Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition. Date published...

In APache APISIX before 3.13.1, the jwt-auth plugin has a security issue that leaks the user’s secret key because the error message returned from the dependency lua-resty-jwt contains sensitive information. Date published : 2022-04-20...

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input. Date published : 2022-04-20 https://groups.google.com/g/golang-announce/c/oecdBNLOml8 https://groups.google.com/g/golang-announce

A reflected cross-site scripting (XSS) vulnerability in the /public/launchNewWindow.jsp component of Zimbra Collaboration (aka ZCS) 9.0 allows unauthenticated attackers to execute arbitrary web script or HTML via request parameters. Date published : 2022-04-20 https://wiki.zimbra.com/wiki/Security_Center...

Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts files from it. An authenticated user with administrator rights has the ability to upload arbitrary files to...

Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 allows an unauthenticated attacker to inject arbitrary memcache commands into a targeted instance. These memcache commands becomes unescaped, causing an overwrite of arbitrary cached entries. Date published...

Certificate.Verify in crypto/x509 in Go 1.18.x before 1.18.1 can be caused to panic on macOS when presented with certain malformed certificates. This allows a remote TLS server to cause a TLS client to panic....

A malicious actor having access to the exported configuration file may obtain the stored credentials and thereby gain access to the protected resource. If the same passwords were used for other resources, further such...

There is no limit to the number of attempts to authenticate for the local configuration pages for the Hills ComNav Version 3002-19 interface, which allows local attackers to brute-force credentials. Date published : 2022-04-20...