Full Disclosure Mailing List

• Previous Month
• RSS Feed
• About List
• All Lists

A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. More importantly, fresh vulnerabilities sometimes hit this list many hours or days before they pass through the Bugtraq moderation queue.

List Archives

• Jan
• Feb
• Mar
• Apr
• May
• Jun
• Jul
• Aug
• Sep
• Oct
• Nov
• Dec
• 2024
• 75
• 25
• 44
• 29
• 37
• –
• –
• –
• –
• –
• –
• –
• 2023
• 29
• 17
• 27
• 14
• 28
• 10
• 52
• 33
• 21
• 32
• 15
• 30
• 2022
• 91
• 57
• 63
• 54
• 48
• 57
• 27
• 17
• 30
• 52
• 26
• 32
• 2021
• 84
• 93
• 81
• 77
• 81
• 60
• 72
• 39
• 59
• 79
• 56
• 50
• 2020
• 52
• 36
• 57
• 63
• 60
• 35
• 37
• 24
• 55
• 34
• 45
• 60
• 2019
• 71
• 54
• 64
• 41
• 52
• 49
• 40
• 37
• 45
• 59
• 34
• 37
• 2018
• 102
• 84
• 79
• 61
• 73
• 46
• 95
• 53
• 57
• 54
• 69
• 56
• 2017
• 99
• 103
• 91
• 113
• 108
• 52
• 95
• 58
• 98
• 71
• 51
• 89
• 2016
• 100
• 128
• 97
• 93
• 75
• 79
• 89
• 139
• 85
• 103
• 162
• 88
• 2015
• 134
• 101
• 165
• 115
• 133
• 112
• 126
• 86
• 121
• 115
• 111
• 129
• 2014
• 194
• 273
• 434
• 325
• 213
• 173
• 167
• 89
• 115
• 135
• 103
• 138
• 2013
• 282
• 162
• 290
• 263
• 227
• 259
• 277
• 303
• 187
• 294
• 222
• 224
• 2012
• 611
• 477
• 390
• 382
• 323
• 428
• 394
• 393
• 210
• 277
• 236
• 280
• 2011
• 580
• 687
• 439
• 561
• 572
• 565
• 367
• 393
• 370
• 995
• 466
• 511
• 2010
• 637
• 502
• 564
• 452
• 408
• 631
• 417
• 445
• 414
• 523
• 342
• 696
• 2009
• 979
• 380
• 465
• 318
• 282
• 291
• 550
• 455
• 421
• 339
• 386
• 502
• 2008
• 615
• 496
• 600
• 821
• 681
• 403
• 591
• 557
• 639
• 531
• 739
• 634
• 2007
• 593
• 629
• 573
• 744
• 555
• 661
• 662
• 530
• 709
• 935
• 582
• 641
• 2006
• 992
• 740
• 1865
• 865
• 789
• 1058
• 770
• 771
• 578
• 678
• 545
• 493
• 2005
• 927
• 676
• 950
• 654
• 678
• 437
• 766
• 1078
• 890
• 677
• 1065
• 1531
• 2004
• 1358
• 1534
• 1499
• 1153
• 1451
• 1031
• 1370
• 1314
• 1091
• 1174
• 1424
• 731
• 2003
• 505
• 405
• 296
• 500
• 421
• 890
• 1251
• 1942
• 1763
• 1806
• 1123
• 782
• 2002
• –
• –
• –
• –
• –
• –
• 314
• 835
• 684
• 381
• 454
• 313

Latest Posts

CyberDanube Security Research 20240528-0 | Multiple Vulnerabilities in ORing IAP-420 Thomas Weber via Fulldisclosure (May 29)
CyberDanube Security Research 20240528-0
-------------------------------------------------------------------------------
title| Multiple Vulnerabilities
product| ORing IAP-420
vulnerable version| 2.01e
fixed version| -
CVE number| CVE-2024-5410, CVE-2024-5411
impact| High
homepage| https://oringnet.com/
found| 2024-01-19
by| T. Weber...

HNS-2024-06 - HN Security Advisory - Multiple vulnerabilities in Eclipse ThreadX Marco Ivaldi (May 29)
Hi,

Please find attached a security advisory that describes multiple
vulnerabilities we discovered in Eclipse ThreadX (aka Azure RTOS).

* Title: Multiple vulnerabilities in Eclipse ThreadX
* OS: Eclipse ThreadX < 6.4.0
* Author: Marco Ivaldi <marco.ivaldi () hnsecurity it>
* Date: 2024-05-28
* CVE IDs and severity:
* CVE-2024-2214 - High - 7.0 - CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-2212 - High - 7.3 -...

SEC Consult SA-20240527-0 :: Multiple vulnerabilities in HAWKI didactic interface SEC Consult Vulnerability Lab via Fulldisclosure (May 27)
SEC Consult Vulnerability Lab Security Advisory < 20240527-0 >
=======================================================================
title: Multiple vulnerabilities
product: HAWKI (Interaction Design Team at the University of Applied
Sciences and Arts in Hildesheim/Germany)
vulnerable version: 1.0.0-beta.1, versions before commit 146967f
    fixed version: Github commit 146967f...

SEC Consult SA-20240524-0 :: Exposed Serial Shell on multiple PLCs in Siemens CP-XXXX Series SEC Consult Vulnerability Lab via Fulldisclosure (May 27)
SEC Consult Vulnerability Lab Security Advisory < 20240524-0 >
=======================================================================
title: Exposed Serial Shell on multiple PLCs
product: Siemens CP-XXXX Series (CP-2014, CP-2016, CP-2017, CP-2019, CP-5014)
vulnerable version: All hardware revisions
fixed version: Hardware is EOL, no fix
CVE number: -
impact: Low...

SEC Consult SA-20240522-0 :: Broken access control & API Information Exposure in 4BRO App SEC Consult Vulnerability Lab via Fulldisclosure (May 23)
SEC Consult Vulnerability Lab Security Advisory < 20240522-0 >
=======================================================================
title: Broken access control & API Information Exposure
product: 4BRO App
vulnerable version: before 2024-04-17
fixed version: 2024-04-17
CVE number: -
impact: Critical
homepage: https://www.4bro.de
found: 2023-05-07...

[CFP] Security BSides Ljubljana 0x7E8 | September 27, 2024 Andraz Sraka (May 23)
MMMMMMMMMMMMMMMMNmddmNMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MMN..-..--+MMNy:...-.-/yNMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MMy..ymd-.:Mm::-:osyo-..-mMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
MM:..---.:dM/..+NNyyMN/..:MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
Mm../dds.-oy.-.dMh--mMds++MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM
My:::::/ydMmo..-hMMMmo//omMs/+Mm+++++shNMN+//+//+oMNy+///ohM
MMMs//yMNo+hMh---m:-:hy+sMN..+Mo..os+.-:Ny--ossssdN-.:yyo+mM...

asterisk release 20.8.1 Asterisk Development Team via Fulldisclosure (May 20)
The Asterisk Development Team would like to announce security release
Asterisk 20.8.1.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/20.8.1
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 20.8.1

## Change Log for Release asterisk-20.8.1

### Links:

- [Full ChangeLog](...

asterisk release 21.3.1 Asterisk Development Team via Fulldisclosure (May 20)
The Asterisk Development Team would like to announce security release
Asterisk 21.3.1.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/21.3.1
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 21.3.1

## Change Log for Release asterisk-21.3.1

### Links:

- [Full ChangeLog](...

asterisk release 18.23.1 Asterisk Development Team via Fulldisclosure (May 20)
The Asterisk Development Team would like to announce security release
Asterisk 18.23.1.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/18.23.1
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 18.23.1

## Change Log for Release asterisk-18.23.1

### Links:

- [Full ChangeLog](...

CVE-2024-34058: Nethserver 7 & 8 stored cross-site scripting (XSS) in WebTop package Andrea Intilangelo (May 20)
CVE-2024-34058: Nethserver 7 & 8 stored cross-site scripting (XSS) in WebTop package

Use CVE-2024-34058.

Additional info:

NethServer is an Open Source operating system for the Linux enthusiast, designed for small offices and medium
enterprises. From their website: "It's simple, secure and flexible" and "ready to deliver your messages, to protect
your network with the built-in firewall, share your files and much more,...

SEC Consult SA-20240513-0 :: Tolerating Self-Signed Certificates in SAP® Cloud Connector SEC Consult Vulnerability Lab via Fulldisclosure (May 14)
SEC Consult Vulnerability Lab Security Advisory < 20240513-0 >
=======================================================================
title: Tolerating Self-Signed Certificates
product: SAP® Cloud Connector
vulnerable version: 2.15.0 - 2.16.1 (Portable and Installer)
fixed version: 2.16.2 (Portable and Installer)
CVE number: CVE-2024-25642
impact: high
homepage:...

TROJANSPY.WIN64.EMOTET.A / Arbitrary Code Execution malvuln (May 14)
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024
Original source:
https://malvuln.com/advisory/f917c77f60c3c1ac6dbbadbf366ddd30.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: TrojanSpy.Win64.EMOTET.A
Vulnerability: Arbitrary Code Execution
Description: The malware looks for and executes a x64-bit "CRYPTBASE.dll"
PE file in its current directory. Therefore, we can hijack the DLL and
execute our own...

BACKDOOR.WIN32.ASYNCRAT / Arbitrary Code Execution malvuln (May 14)
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024
Original source:
https://malvuln.com/advisory/2337b9a12ecf50b94fc95e6ac34b3ecc.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Backdoor.Win32.AsyncRat
Vulnerability: Arbitrary Code Execution
Description: The malware looks for and executes a x32-bit "CRYPTSP.dll" PE
file in its current directory. Therefore, we can hijack the DLL and execute
our own...

Re: Panel.SmokeLoader / Cross Site Request Forgery (CSRF) malvuln (May 14)
Updated and fixed a payload typo and added additional info regarding the
stored persistent XSS see attached.

Thanks, Malvuln

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024
Original source: https://malvuln.com/advisory/4b5fc3a2489985f314b81d35eac3560f_B.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Panel.SmokeLoader
Vulnerability: Cross Site Request Forgery (CSRF) - Persistent XSS
Family: SmokeLoader...

Panel.SmokeLoader / Cross Site Request Forgery (CSRF) malvuln (May 14)
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024
Original source:
https://malvuln.com/advisory/4b5fc3a2489985f314b81d35eac3560f_B.txt
Contact: malvuln13 () gmail com
Media: twitter.com/malvuln

Threat: Panel.SmokeLoader
Vulnerability: Cross Site Request Forgery (CSRF)
Family: SmokeLoader
Type: Web Panel
MD5: 4b5fc3a2489985f314b81d35eac3560f (control.php)
SHA256: 8d02238577081be74b9ebc1effcfbf3452ffdb51f130398b5ab875b9bfe17743
Vuln...

More Lists

Dozens of other network security lists are archived at SecLists.Org.