Full Disclosure: by author

Previous period
Next period

26 messages starting Nov 15 22 and ending Nov 07 22
Date index | Thread index | Author index

Apple Product Security via Fulldisclosure

APPLE-SA-2022-11-09-1 iOS 16.1.1 and iPadOS 16.1.1 Apple Product Security via Fulldisclosure (Nov 15)
APPLE-SA-2022-11-01-1 Xcode 14.1 Apple Product Security via Fulldisclosure (Nov 07)
APPLE-SA-2022-11-09-2 macOS Ventura 13.0.1 Apple Product Security via Fulldisclosure (Nov 15)

Egidio Romano

Exploiting an N-day vBulletin PHP Object Injection Vulnerability Egidio Romano (Nov 29)

FD

Cisco Secure Email Gateways can easily be circumvented FD (Nov 15)

houjingyi

crashing potplayer again houjingyi (Nov 29)

Julien Ahrens (RCE Security)

[CVE-2022-3861] Betheme <= 26.5.1.4 - Authenticated (Contributor+) PHP Object Injection Julien Ahrens (RCE Security) (Nov 20)
[CVE-2022-3747] BeCustom <= 1.0.5.2 Generic Cross-Site Request Forgery Julien Ahrens (RCE Security) (Nov 15)
[CVE-2022-33942] Intel Data Center Manager Console <= 4.1.1.45749 ā€¯UserMgmtHandler" Authentication Logic Error Leading to Authentication Bypass Julien Ahrens (RCE Security) (Nov 29)

malvuln

Backdoor.Win32.Aphexdoor.LiteSock / Remote Stack Buffer Overflow (SEH) malvuln (Nov 15)
Backdoor.Win32.Serman.a / Unauthenticated Open Proxy malvuln (Nov 29)
Trojan.Win32.DarkNeuron.gen / Named Pipe Null DACL malvuln (Nov 29)
HEUR:Trojan.MSIL.Agent.gen / Information Disclosure malvuln (Nov 15)
Backdoor.Win32.Autocrat.b / Weak Hardcoded Credentials malvuln (Nov 29)
Ransomware Deception Tactics Part 1 malvuln (Nov 29)
Backdoor.Win32.Quux / Weak Hardcoded Credentials malvuln (Nov 20)
Win32.Ransom.Conti / Crypto Logic Flaw malvuln (Nov 29)
Backdoor.Win32.RemServ.d / Unauthenticated Remote Command Execution malvuln (Nov 15)
Backdoor.Win32.Oblivion.01.a / Insecure Transit Password Disclosure malvuln (Nov 20)
Trojan.Win32.Platinum.gen / Arbitrary Code Execution malvuln (Nov 20)

Martin Heiland via Fulldisclosure

Open-Xchange Security Advisory 2022-11-24 Martin Heiland via Fulldisclosure (Nov 29)

SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult SA-20221109-0 :: Multiple Critical Vulnerabilities in Simmeth System GmbH Supplier manager (Lieferantenmanager) SEC Consult Vulnerability Lab, Research via Fulldisclosure (Nov 15)
SEC Consult SA-20221110-0 :: HTML Injection in BMC Remedy ITSM-Suite SEC Consult Vulnerability Lab, Research via Fulldisclosure (Nov 15)
SEC Consult SA-20221114-0 :: Path Traversal Vulnerability in Payara Platform SEC Consult Vulnerability Lab, Research via Fulldisclosure (Nov 15)

Thomas Weber

CyberDanube Security Research 20221124-0 | Authenticated Command Injection Hirschmann BAT-C2 Thomas Weber (Nov 29)

Turritopsis Dohrnii Teo En Ming

CVE-2022-3602 and CVE-2022-3786 Critical OpenSSL 3.0.x security vulnerabilities Turritopsis Dohrnii Teo En Ming (Nov 07)
Previous period
Next period