date:20221208

[FD] CyberDanube Security Research 20221130-1 | Authenticated Command Injection in Delta Electronics DVW-W02W2-E2

2022-12-08 Thread Thomas Weber

CyberDanube Security Research 20221130-1 --- title| Authenticated Command Injection product| Delta Electronics DVW-W02W2-E2 vulnerable version| V2.42 fixed version| V2.5.2 CVE

[FD] CyberDanube Security Research 20221130-0 | Multiple Vulnerabilities in Delta Electronics DX-2100-L1-CN

2022-12-08 Thread Thomas Weber

CyberDanube Security Research 20221130-0 --- title| Multiple Vulnerabilities product| Delta Electronics DX-2100-L1-CN vulnerable version| V1.5.0.10 fixed version| V1.5.0.12 CV

[FD] SEC Consult SA-20221206-0 :: Multiple critical vulnerabilities in ILIAS eLearning platform

2022-12-08 Thread SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult Vulnerability Lab Security Advisory < 20221206-0 > === title: Multiple critical vulnerabilities product: ILIAS eLearning platform vulnerable version: <= 7.15 fixed version: 7.16

[FD] SEC Consult SA-20221201-0 :: Replay attacks & Displaying arbitrary contents in Zhuhai Suny Technology ESL Tag / ETAG-TECH protocol (electronic shelf labels)

2022-12-08 Thread SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult Vulnerability Lab Security Advisory < 20221201-0 > === title: Replay attacks & Displaying arbitrary contents product: Zhuhai Suny Technology ESL Tag / ETAG-TECH protocol

[FD] Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328)

2022-12-08 Thread Qualys Security Advisory via Fulldisclosure

Qualys Security Advisory Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328) Contents Summary Background Exploitation

[FD] Backdoor.Win32.Delf.gj / Information Disclosure

2022-12-08 Thread malvuln

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/8872c2ec49ff3382240762a029631684.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Backup media: infosec.exchange/@malvuln Threat: Backdoor.Win32.Delf.gj Vulnerability: Informati

[FD] Intel Data Center Manager <= 5.1 Local Privileges Escalation

2022-12-08 Thread Julien Ahrens (RCE Security)

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION === Product:Intel Data Center Manager Vendor URL: https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html Type: Incorrect Use of Privilege

[FD] [CVE-2022-21225] Intel Data Center Manager Console <= 4.1 “getRoomRackData" Authenticated (Guest+) SQL Injection

2022-12-08 Thread Julien Ahrens (RCE Security)

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION === Product:Intel Data Center Manager Vendor URL: https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html Type: SQL Injection [CWE-89] Dat

[FD] CyberDanube Security Research 20221130-1 | Authenticated Command Injection in Delta Electronics DVW-W02W2-E2

[FD] CyberDanube Security Research 20221130-0 | Multiple Vulnerabilities in Delta Electronics DX-2100-L1-CN

[FD] SEC Consult SA-20221206-0 :: Multiple critical vulnerabilities in ILIAS eLearning platform

[FD] SEC Consult SA-20221201-0 :: Replay attacks & Displaying arbitrary contents in Zhuhai Suny Technology ESL Tag / ETAG-TECH protocol (electronic shelf labels)

[FD] Race condition in snap-confine's must_mkdir_and_open_with_perms() (CVE-2022-3328)

[FD] Backdoor.Win32.Delf.gj / Information Disclosure

[FD] Intel Data Center Manager <= 5.1 Local Privileges Escalation

[FD] [CVE-2022-21225] Intel Data Center Manager Console <= 4.1 “getRoomRackData" Authenticated (Guest+) SQL Injection

8 matches

Site Navigation

Mail list logo

Footer information