CyberDanube Security Research 20221130-1
---
title| Authenticated Command Injection
product| Delta Electronics DVW-W02W2-E2
vulnerable version| V2.42
fixed version| V2.5.2
CVE
CyberDanube Security Research 20221130-0
---
title| Multiple Vulnerabilities
product| Delta Electronics DX-2100-L1-CN
vulnerable version| V1.5.0.10
fixed version| V1.5.0.12
CV
SEC Consult Vulnerability Lab Security Advisory < 20221206-0 >
===
title: Multiple critical vulnerabilities
product: ILIAS eLearning platform
vulnerable version: <= 7.15
fixed version: 7.16
SEC Consult Vulnerability Lab Security Advisory < 20221201-0 >
===
title: Replay attacks & Displaying arbitrary contents
product: Zhuhai Suny Technology ESL Tag / ETAG-TECH protocol
Qualys Security Advisory
Race condition in snap-confine's must_mkdir_and_open_with_perms()
(CVE-2022-3328)
Contents
Summary
Background
Exploitation
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022
Original source:
https://malvuln.com/advisory/8872c2ec49ff3382240762a029631684.txt
Contact: malvul...@gmail.com
Media: twitter.com/malvuln
Backup media: infosec.exchange/@malvuln
Threat: Backdoor.Win32.Delf.gj
Vulnerability: Informati
RCE Security Advisory
https://www.rcesecurity.com
1. ADVISORY INFORMATION
===
Product:Intel Data Center Manager
Vendor URL:
https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html
Type: Incorrect Use of Privilege
RCE Security Advisory
https://www.rcesecurity.com
1. ADVISORY INFORMATION
===
Product:Intel Data Center Manager
Vendor URL:
https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html
Type: SQL Injection [CWE-89]
Dat