#rce

Red Hat Security Advisory 2022-1627-01

Red Hat Security Advisory 2022-1627-01 - AMQ Broker is a high-performance messaging implementation based on ActiveMQ Artemis. It uses an asynchronous journal for fast message persistence, and supports multiple languages, protocols, and platforms. This release of Red Hat AMQ Broker 7.9.4 serves as a replacement for Red Hat AMQ Broker 7.9.3, and includes security and bug fixes, and enhancements.

3 years ago

Packet Storm

Open in Source

#vulnerability #web #red_hat #js #java #c++#rce

CVE-2022-27336

Seacms v11.6 was discovered to contain a remote code execution (RCE) vulnerability via the component /admin/weixin.php.

3 years ago

CVE

Open in Source

#vulnerability #php #rce

VirusTotal debunks claims of a serious vulnerability in Google-owned antivirus service

Third party file and theft

3 years ago

PortSwigger

Open in Source

#vulnerability #mac #google #java #intel #rce

CVE-2022-24889: Build software better, together

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 21.0.8, 22.2.4, and 23.0.1, it is possible to trick administrators into enabling "recommended" apps for the Nextcloud server that they do not need, thus expanding their attack surface unnecessarily. This issue is fixed in versions 21.0.8 , 22.2.4, and 23.0.1.

3 years ago

CVE

Open in Source

#rce

CVE-2022-27239: Linux CIFS Utils and Samba - Free Knowledge Base

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.

3 years ago

CVE

Open in Source

#web #ios #mac #windows #microsoft #ubuntu #linux #debian #php #rce #perl #samba #aws #bios #buffer_overflow #auth #ssh #ibm

CVE-2022-28464

Apifox through 2.1.6 is vulnerable to Cross Site Scripting (XSS) which can lead to remote code execution.

3 years ago

CVE

Open in Source

#xss #rce

Explaining Cloud Native Application Security

By Owais Sultan Securing applications on-premises and on the cloud are two entirely different processes. The cloud provides plenty of benefits… This is a post from HackRead.com Read the original post: Explaining Cloud Native Application Security

3 years ago

HackRead

Open in Source

#vulnerability #apple #rce #aws #auth

Millions of Java Apps Remain Vulnerable to Log4Shell

Four months after the critical flaw was discovered, attackers have a massive attack surface from which they can exploit the flaw and take over systems, researchers found.

3 years ago

Threatpost

Open in Source

#vulnerability #google #apache #java #rce #log4j #auth #zero_day

Google's New Safety Section Shows What Data Android Apps Collect About Users

Google on Tuesday officially began rolling out a new "Data safety" section for Android apps on the Play Store to highlight the type of data being collected and shared with third-parties. "Users want to know for what purpose their data is being collected and whether the developer is sharing user data with third parties," Suzanne Frey, Vice President of product for Android security and privacy,

3 years ago

The Hacker News

Open in Source

#android #apple #google #js #git #rce #aws #i2p #The Hacker News

Student grades stored in Greek education platform UniverSIS could be manipulated via SQLi

Maintainers promptly patch issue that could also leak sensitive personal data

3 years ago

PortSwigger

Open in Source

#sql #vulnerability #git #java #rce #auth

Tag

#rce