SEC Consult Vulnerability Lab Security Advisory < 20240307-0 >
===
title: Local Privilege Escalation via writable files
product: Checkmk Agent
vulnerable version: 2.0.0, 2.1.0, 2.2.0
fixed versi
SEC Consult Vulnerability Lab Security Advisory < 20240226-0 >
===
title: Local Privilege Escalation via DLL Hijacking
product: Qognify VMS Client Viewer
vulnerable version: >=7.1
fixed version:
SEC Consult Vulnerability Lab Security Advisory < 20240220-0 >
===
title: Multiple Stored Cross-Site Scripting Vulnerabilities
product: OpenOLAT (Frentix GmbH)
vulnerable version: <= 18.1.4 and <= 18.1
SEC Consult Vulnerability Lab Security Advisory < 20240212-0 >
===
title: Multiple Stored Cross-Site Scripting vulnerabilities
product: Statamic CMS
vulnerable version: <4.46.0, <3.4.17
fixed ve
SEC Consult Vulnerability Lab Security Advisory < 20231211-0 >
===
title: Local Privilege Escalation via MSI installer
product: PDF24 Creator (geek Software GmbH)
vulnerable version: <=11.15.1
f
SEC Consult Vulnerability Lab Security Advisory < 20231206-0 >
===
title: Kiosk Escape Privilege Escalation
product: One Identity Password Manager Secure Password Extension
vulnerable version: <5.13.1
SEC Consult Vulnerability Lab Security Advisory < 20231205-0 >
===
title: Argument injection leading to unauthenticated RCE and
authentication bypass
product: Atos Unify OpenScape S
SEC Consult Vulnerability Lab Security Advisory < 20231005-0 >
===
title: Open Redirect in BSP Test Application it00
(Bypass for CVE-2020-6215 Patch)
product: SAP® Application Serve
SEC Consult Vulnerability Lab Security Advisory < 20230927-0 >
===
title: Multiple Vulnerabilities
product: SAP® Enable Now Manager
vulnerable version: 10.6.5 (Build 2804) Cloud Edition
fixed ve
SEC Consult Vulnerability Lab Security Advisory < 20230925-0 >
===
title: Stored Cross-Site Scripting
product: mb Support broker management solution openVIVA c2
vulnerable version: <20220801
fix
SEC Consult Vulnerability Lab Security Advisory < 20230918-0 >
===
title: Authenticated Remote Code Execution and
Missing Authentication
product: Atos Unify OpenScape Session Border
SEC Consult Vulnerability Lab Security Advisory < 20230829-0 >
===
title: Reflected Cross-Site Scripting (XSS)
product: PTC - Codebeamer (ALM Solution)
vulnerable version: <=22.10-SP7, <=22.04-SP5, <=2
SEC Consult Vulnerability Lab Security Advisory < 20230705-0 >
===
title: Path traversal bypass & Denial of service
product: Kyocera TASKalfa 4053ci printer
vulnerable version: TASKalfa 4053ci Version
SEC Consult Vulnerability Lab Security Advisory < 20230703-0 >
===
title: Multiple Vulnerabilities including Unauthenticated RCE
product: Siemens A8000 CP-8050 MASTER MODULE (6MF2805-0AA00)
SEC Consult Vulnerability Lab Whitepaper < 20230629-0 >
===
Title: Everyone Knows SAP®, Everyone Uses SAP,
Everyone Uses RFC, No One Knows RFC:
From RF
SEC Consult Vulnerability Lab Security Advisory < 20230628-0 >
===
title: Stored XSS & Privilege Escalation
product: Boomerang Parental Control App
vulnerable version: <13.83
fixed version: >=13
SEC Consult Vulnerability Lab Security Advisory < 20230627-0 >
===
title: Multiple high risk vulnerabilities
product: ILIAS eLearning platform
vulnerable version: see section "Vulnerable version" below
SEC Consult Vulnerability Lab Security Advisory < 20230517-0 >
===
title: Stored XSS vulnerability in rename functionality
product: Wekan (Open-Source kanban)
vulnerable version: <=6.74
fixed ve
SEC Consult Vulnerability Lab Security Advisory < 20230516-0 >
===
title: Multiple Vulnerabilities
product: Serenity and StartSharp Software
vulnerable version: < 6.7.1
fixed version: 6.7.1 or h
SEC Consult Vulnerability Lab Security Advisory < 20230515-0 >
===
title: Multiple Vulnerabilities
product: Kiddoware Kids Place Parental Control Android App
vulnerable version: <=3.8.49
fixed v
SEC Consult Vulnerability Lab Security Advisory < 20230502-0 >
===
title: Bypassing cluster isolation through insecure defaults and
shared storage
product: Databricks Platform
vul
SEC Consult Vulnerability Lab Security Advisory < 20230306-0 >
===
title: Multiple Vulnerabilities
product: Arris DG3450 Cable Gateway
vulnerable version: AR01.02.056.18_041520_711.NCS.10
fixed
SEC Consult Vulnerability Lab Security Advisory < 20230228-0 >
===
title: OS Command Injection
product: Barracuda CloudGen WAN
vulnerable version: < v8.* hotfix 1089
fixed version: v8.* with hot
SEC Consult Vulnerability Lab Security Advisory < 20230117-2 >
===
title: Multiple post-authentication vulnerabilities including RCE
product: OpenText™ Content Server component of OpenText™ Extended
ECM
SEC Consult Vulnerability Lab Security Advisory < 20230117-1 >
===
title: Pre-authenticated Remote Code Execution via Java frontend
and QDS endpoint
product: OpenText™ Content Serve
SEC Consult Vulnerability Lab Security Advisory < 20230117-0 >
===
title: Pre-authenticated Remote Code Execution in cs.exe
product: OpenText™ Content Server component of OpenText™ Extended
ECM
vulner
SEC Consult Vulnerability Lab Security Advisory < 20221216-0 >
===
title: Remote code execution - CVE-2021-34427 bypass
product: Eclipse Business Intelligence Reporting Tool (BiRT)
vulnerable version:
Hi,
earlier this year in February 2022, we published a technical security advisory
-
https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-multiple-zyxel-devices/
- on
different critical vulnerabilities in Zyxel devices, resulting from insecure
coding practic
SEC Consult Vulnerability Lab Security Advisory < 20221213-0 >
===
title: Privilege Escalation Vulnerabilities (UNIX Insecure File
Handling)
product: SAP® Host Agent (saposcol)
vu
SEC Consult Vulnerability Lab Security Advisory < 20221206-0 >
===
title: Multiple critical vulnerabilities
product: ILIAS eLearning platform
vulnerable version: <= 7.15
fixed version: 7.16
SEC Consult Vulnerability Lab Security Advisory < 20221201-0 >
===
title: Replay attacks & Displaying arbitrary contents
product: Zhuhai Suny Technology ESL Tag / ETAG-TECH protocol
SEC Consult Vulnerability Lab Security Advisory < 20221114-0 >
===
title: Path Traversal Vulnerability
product: Payara Platform
vulnerable version: Enterprise: <5.45.0
Community:
SEC Consult Vulnerability Lab Security Advisory < 20221110-0 >
===
title: HTML Injection
product: BMC Remedy ITSM-Suite
vulnerable version: 9.1.10 (= 20.02 in new versioning scheme)
fixed versio
SEC Consult Vulnerability Lab Security Advisory < 20221109-0 >
===
title: Multiple Critical Vulnerabilities
product: Simmeth System GmbH Supplier manager (Lieferantenmanager)
vulnerable version: < 5.6
SEC Consult Vulnerability Lab Security Advisory < 20220923-0 >
===
title: Multiple Memory Corruption Vulnerabilities
product: COVESA DLT daemon (Diagnostic Log and Trace)
Connected
SEC Consult Vulnerability Lab Security Advisory < 20220915-0 >
===
title: Local privilege escalation
product: SAP® SAPControl Web Service Interface (sapuxuserchk)
vulnerable version: see section "Vulne
SEC Consult Vulnerability Lab Security Advisory < 20220914-0 >
===
title: Improper Access Control
product: SAP® SAProuter
vulnerable version: see section "Vulnerable / tested versions"
fixed ver
SEC Consult Vulnerability Lab Security Advisory < 20220615-0 >
===
title: Hardcoded Backdoor User and Outdated Software Components
product: Nexans FTTO GigaSwitch industrial/office switches HW
version 5
SEC Consult Vulnerability Lab Security Advisory < 20220614-0 >
===
title: Reflected Cross Site Scripting
product: SIEMENS-SINEMA Remote Connect
vulnerable version: <=V3.0.1.0-01.01.00.02
fixed v
SEC Consult Vulnerability Lab Security Advisory < 20220609-0 >
===
title: Multiple vulnerabilities
product: SoftGuard SNMP Network Management Extension
vulnerable version: SoftGuard Web (SGW) < 5.1.5
SEC Consult Vulnerability Lab Security Advisory < 20220608-0 >
===
title: Stored Cross-Site Scripting & Unsafe Java Deserializiation
product: Gentics CMS
vulnerable version: 5.36.29, see section below
SEC Consult Vulnerability Lab Security Advisory < 20220607-0 >
===
title: Multiple Vulnerabilities
product: Infiray IRAY-A8Z3 thermal camera
vulnerable version: V1.0.957
fixed version: None
SEC Consult Vulnerability Lab Security Advisory < 20220602-0 >
===
title: Multiple Memory Corruption Vulnerabilities
product: dbus-broker
vulnerable version: dbus-broker-29
fixed version: dbus-b
SEC Consult Vulnerability Lab Security Advisory < 20220601-1 >
===
title: Authenticated Command Injection
product: Poly Studio X30, Studio X50, Studio X70, G7500
vulnerable version: 3.4.0-292042, 3.5.0
SEC Consult Vulnerability Lab Security Advisory < 20220601-0 >
===
title: Multiple Critical Vulnerabilities
product: Poly EagleEye Director II
vulnerable version: 2.2.1.1 (Jul 1, 2021)
fixed ver
SEC Consult Vulnerability Lab Security Advisory < 20220531-0 >
===
title: Backdoor account
product: Korenix JetPort 5601V3
vulnerable version: Firmware version 1.0
fixed version: None
SEC Consult Vulnerability Lab Security Advisory < 20220518-0 >
===
title: Multiple Critical Vulnerabilities
product: SAP® Application Server
ABAP and ABAP® Platform (Different Softw
SEC Consult Vulnerability Lab Security Advisory < 20220505-0 >
===
title: Password Reset Poisoning Attack
product: Craft CMS
vulnerable version: 3.7.36 and potentially lower
fixed version: none,
SEC Consult Vulnerability Lab Security Advisory < 20220427-0 >
===
title: Privilege Escalation
product: Miele Benchmark Programming Tool
vulnerable version: at least 1.1.49 and 1.2.71
fixed vers
SEC Consult Vulnerability Lab Security Advisory < 20220413-0 >
===
title: Missing Authentication at File Download & Denial of
Service
product: Siemens A8000 CP-8050/CP-8031 SICAM WEB
vulnerable versio
SEC Consult Vulnerability Lab Security Advisory < 20220215-0 >
===
title: Multiple Critical Vulnerabilities
product: Multiple Zyxel devices
vulnerable version: For affected products see "Solution" sect
SEC Consult Vulnerability Lab Security Advisory < 20220209-0 >
===
title: Open Redirect in Login Page
product: SIEMENS-SINEMA Remote Connect
vulnerable version: V1.0 SP3 HF1
fixed version: V2.0
SEC Consult Vulnerability Lab Security Advisory < 20220202-0 >
===
title: Broken access control & Cross-Site Scripting
product: Shopmetrics Mystery Shopping Software
vulnerable version: SaaS platform b
SEC Consult Vulnerability Lab Security Advisory < 20220131-0 >
===
title: Multiple Critical Vulnerabilities
product: Korenix Technology JetWave products:
JetWave 2212X, JetWave 2212
SEC Consult Vulnerability Lab Security Advisory < 20220126-0 >
===
title: Denial of service & User Enumeration
product: WAGO 750-8xxx PLC
vulnerable version: < Firmware 20 Patch 1 (v03.08.08)
fi
SEC Consult Vulnerability Lab Security Advisory < 20220124-0 >
===
title: Authenticated Path Traversal
product: Ethercreative Logs plugin for Craft CMS
vulnerable version: <=3.0.3
fixed version:
SEC Consult Vulnerability Lab Security Advisory < 20220120-0 >
===
title: Local file inclusion vulnerability
product: Land Software - FAUST iServer
vulnerable version: 9.0.017.017.1-3 - 9.0.018.018.4
SEC Consult Vulnerability Lab Security Advisory < 20220117-0 >
===
title: Stored Cross-Site Scripting vulnerability
product: TYPO3 extension "femanager"
vulnerable version: 6.0.0 - 6.3.0 and 5.5.0 and
SEC Consult Vulnerability Lab Security Advisory < 20220113-0 >
===
title: Cleartext Storage of Phone Password
product: Cisco IP Phone Series 78x1, 88x5, 88x1, 7832,
8832, 8821 and 3
59 matches
Mail list logo