[ESNC-2039348] Multiple Critical Security Vulnerabilities in SAP
Governance, Risk and Compliance (SAP GRC)
Please refer to http://www.esnc.de for the original security advisory,
updates and additional information.
1.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-3072-1 secur...@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
November 11, 2014
CVE-2014-8731
CVSSv2 Vector:
[AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:U/RC:C]
CVSSv2 Base Score=10.0
CVSSv2 Temp Score=9.5
OWASP Top 10 classification: A1 - Injection
PHPMemcachedAdmin is a web-based frontend for Linux's memcached Daemon.
Project Homepage:
https://code.google.com/p/phpmemcacheadmin/
CVE-2014-8732
CVSSv2 Vector:
[AV:N/AC:L/Au:N/C:P/I:P/A:P/E:H/RL:U/RC:C]
CVSSv2 Base Score=7.5
CVSSv2 Temp Score=7.5
OWASP Top 10 classification: A3 - Cross Site Scripting
There is a stored xss vulnerability in phpMemcachedAdmin. Most of the
user-specified input fields which are displayed on
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
FundaciĆ³n Dr. Manuel Sadosky - Programa STIC Advisory
www.fundacionsadosky.org.ar
Prey Anti-Theft for Android missing SSL certificate validation
1. *Advisory Information*
Title: Prey Anti-Theft for Android missing SSL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian Security Advisory DSA-3050-3 secur...@debian.org
http://www.debian.org/security/ Salvatore Bonaccorso
November 12, 2014
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Note: the current version of the following document is available here:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/
docDisplay?docId=emr_na-c04497042
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c04497042
Version: 1
HPSBMU03182