Tagged: Cybersecurity Alert

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c. More information : https://github.com/fontforge/fontforge/pull/5495

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function. More information : https://github.com/mpruett/audiofile/issues/66

FontForge v20230101 was discovered to contain a memory leak via the component DlgCreate8. More information : https://github.com/fontforge/fontforge/pull/5491

Enabled serial console could potentially leak information that might help attacker to find vulnerabilities.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. More information : https://azure-access.com/security-advisories

A Host Header Injection vulnerability in the password reset component in levlaz braindump v0.4.14 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask’s url_for(_external=True)...

A Host Header Injection vulnerability in the password reset component in axewater sharewarez v2.4.3 allows remote attackers to conduct password reset poisoning and account takeover via manipulation of the Host header when Flask’s url_for(_external=True)...

Cross site scripting (XSS) vulnerability in KeeneticOS before 4.3 at “Wireless ISP” page allows attackers located near to the router to takeover the device via adding additional users with full permissions. More information :...

Cross site request forgery (CSRF) vulnerability in KeeneticOS before 4.3 at “/rci” API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open...

CRLF-injection in KeeneticOS before 4.3 at “/auth” API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit. More information...

A flaw was found in Keycloak. An offline session continues to be valid when the offline_access scope is removed from the client. The refresh token is accepted and you can continue to request new...

A CSV Injection vulnerability existed in Instant Developer Foundation versions prior to 25.0.9600. Applications built with affected versions of the framework did not properly sanitize user-controlled input before including it in CSV exports. This...

Liferay Portal 7.4.0 through 7.4.3.109, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly restrict access to...

Vilar VS-IPC1002 IP cameras are vulnerable to Reflected XSS (Cross-site Scripting) attacks, because parameters in GET requests sent to /cgi-bin/action endpoint are not sanitized properly, making it possible to target logged in admin users....

Vilar VS-IPC1002 IP cameras are vulnerable to DoS (Denial-of-Service) attacks. An unauthenticated attacker on the same local network might send a crafted request to /cgi-bin/action endpoint and render the device completely unresponsive. A manual restart...