Full Disclosure: by author

Previous period
Next period

48 messages starting May 16 22 and ending May 12 22
Date index | Thread index | Author index

Apple Product Security via Fulldisclosure

APPLE-SA-2022-05-16-1 iOS 15.5 and iPadOS 15.5 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-7 Safari 15.5 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-5 watchOS 8.6 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-8 Xcode 13.4 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-6 tvOS 15.5 Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina Apple Product Security via Fulldisclosure (May 16)
APPLE-SA-2022-05-16-2 macOS Monterey 12.4 Apple Product Security via Fulldisclosure (May 16)

chan chan

Disclosing Vulnerability of CLink Office 2.0 chan chan (May 23)

christian mock

some details regarding CVE-2022-24422 / iDRAC VNC authentication christian mock (May 13)

Denis Mironov

CVE-2022-24108: OpenCart's plugin "So Listing Tabs" <= 2.2.0 Deserialization of Untrusted Data Denis Mironov (May 16)

Julien Ahrens (RCE Security)

[CVE-2022-0779] User Meta "um_show_uploaded_file" Path Traversal / Local File Enumeration Julien Ahrens (RCE Security) (May 27)

malvuln

Ransom.Cryakl / Code Execution malvuln (May 07)
Ransom.Petya / Code Execution malvuln (May 07)
Trojan-Ransom.LockerGoga / Code Execution malvuln (May 05)
Ransom.Conti / Code Execution malvuln (May 07)
Trojan-Ransom.Thanos / Code Execution malvuln (May 27)
Conti.Ransom / Code Execution malvuln (May 05)
REvil.Ransom / Code Execution malvuln (May 05)
Conti Ransom / Code Execution malvuln (May 05)
Trojan-Ransom.Cerber / Code Execution malvuln (May 05)
github.com/malvuln/RansomDLLs / Catalog of current DLLs affecting vulnerable Ransomware strains. malvuln (May 18)
Ransom.Satana / Code Execution malvuln (May 07)
Ransom.CTBLocker / Code Execution malvuln (May 05)
REvil Ransom / Code Execution malvuln (May 05)
APT28 FancyBear / Code Execution malvuln (May 10)
RedLine.Stealer / Code Execution malvuln (May 05)
REvil.Ransom / Code Execution malvuln (May 05)
Ransom.Conti / Code Execution malvuln (May 05)
Watch multiple LockBit Ransom get DESTROYED Mass PWNAGE at scale! malvuln (May 18)
Ransom.AvosLocker / Code Execution malvuln (May 02)
Trojan.Ransom.Cryptowall / Code Execution malvuln (May 05)
LokiLocker Ransom / Code Execution malvuln (May 05)
BlackBasta Ransom / Code Execution malvuln (May 05)
Ransom.LockBit / DLL Hijacking malvuln (May 02)
Ransom.WannaCry / Code Execution malvuln (May 05)
Trojan-Ransom.Radamant / Code Execution malvuln (May 07)

Minh-Khoa Tran

Multiple Vulnerabilities in Ruijie RG-EW Series Routers Minh-Khoa Tran (May 02)

Onapsis Research via Fulldisclosure

Onapsis Security Advisory 2022-0001: HTTP Request Smuggling in SAP Web Dispatcher Onapsis Research via Fulldisclosure (May 04)
Onapsis Security Advisory 2022-0002: Denial of Service in SAP NetWeaver JAVA Onapsis Research via Fulldisclosure (May 04)

retset

[tool] tplink backup decryptor. retset (May 23)

Rodolfo Augusto do Nascimento Tavares via Fulldisclosure

PHPIPAM 1.4.4 - CVE-2021-46426 Rodolfo Augusto do Nascimento Tavares via Fulldisclosure (May 18)
LiquidFiles - 3.4.15 - Stored XSS - CVE-2021-30140 Rodolfo Augusto do Nascimento Tavares via Fulldisclosure (May 18)

SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult SA-20220505-0 :: Password Reset Poisoning Attack in Craft CMS SEC Consult Vulnerability Lab, Research via Fulldisclosure (May 05)
SEC Consult SA-20220512-0 :: Sandbox Escape with Root Access & Clear-text passwords in Konica Minolta bizhub MFP Printer Terminals SEC Consult Vulnerability Lab, Research via Fulldisclosure (May 12)
SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAPĀ® Application Server, ABAP and ABAPĀ® Platform (Different Software Components) SEC Consult Vulnerability Lab, Research via Fulldisclosure (May 18)

Stefan Kanthak

Defense in depth -- the Microsoft way (part 80): 25 (in words: TWENTY-FIVE) year old TRIVIAL bug crashes CMD.exe Stefan Kanthak (May 10)

Tavis Ormandy

Re: Defense in depth -- the Microsoft way (part 80): 25 (in words: TWENTY-FIVE) year old TRIVIAL bug crashes CMD.exe Tavis Ormandy (May 12)
Previous period
Next period