Full Disclosure: by author

30 messages starting Dec 12 23 and ending Dec 12 23
Date index | Thread index | Author index

Apple Product Security via Fulldisclosure

APPLE-SA-11-30-2023-1 Safari 17.1.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-3 iOS 16.7.3 and iPadOS 16.7.3 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-5 macOS Ventura 13.6.3 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-4 macOS Sonoma 14.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-19-2023-1 macOS Sonoma 14.2.1 Apple Product Security via Fulldisclosure (Dec 19)
APPLE-SA-11-30-2023-3 macOS Sonoma 14.1.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-11-30-2023-2 iOS 17.1.2 and iPadOS 17.1.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-7 tvOS 17.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-6 macOS Monterey 12.7.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-1 Safari 17.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-8 watchOS 10.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2023-2 iOS 17.2 and iPadOS 17.2 Apple Product Security via Fulldisclosure (Dec 12)

Asterisk Development Team

CORRECTED asterisk release certified-18.9-cert6 Asterisk Development Team (Dec 19)
CORRECTED asterisk release 21.0.1 Asterisk Development Team (Dec 19)

Asterisk Development Team via Fulldisclosure

asterisk release 20.5.1 Asterisk Development Team via Fulldisclosure (Dec 19)
asterisk release 18.20.1 Asterisk Development Team via Fulldisclosure (Dec 19)

Balgogan via Fulldisclosure

Disclosure of CVE-2023-50917: RCE Vulnerability in MajorDoM Balgogan via Fulldisclosure (Dec 19)

BSidesSF CFP via Fulldisclosure

[CFP] BSides San Francisco - May 2024 BSidesSF CFP via Fulldisclosure (Dec 12)

Egidio Romano

[KIS-2023-13] ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability Egidio Romano (Dec 12)
[KIS-2023-14] PKP-WAL <= 3.4.0-3 (NativeImportExportPlugin) Remote Code Execution Vulnerability Egidio Romano (Dec 19)

hyp3rlinx

Microsoft Defender Anti-Malware PowerShell API - Arbitrary Code Execution hyp3rlinx (Dec 12)

Marco Ivaldi

HNS-2023-04 - HN Security Advisory - Buffer overflow vulnerabilities with long path names in TinyDir Marco Ivaldi (Dec 12)

Sandro Gauci

[ES2023-03] RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci (Dec 19)
[ES2023-01] Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci (Dec 19)
[ES2023-02] FreeSWITCH susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci (Dec 26)

SBA - Advisory via Fulldisclosure

[SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management SBA - Advisory via Fulldisclosure (Dec 19)

SEC Consult Vulnerability Lab, Research via Fulldisclosure

SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creator SEC Consult Vulnerability Lab, Research via Fulldisclosure (Dec 12)
SEC Consult SA-20231205 :: Argument injection leading to unauthenticated RCE and authentication bypass in Atos Unify OpenScape Session Border Controller (SBC), Branch, BCF SEC Consult Vulnerability Lab, Research via Fulldisclosure (Dec 12)
SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension SEC Consult Vulnerability Lab, Research via Fulldisclosure (Dec 12)
SEC Consult SA-20231128 :: Missing Certificate Validation & User Enumeration in Anveo Mobile App and Server SEC Consult Vulnerability Lab, Research via Fulldisclosure (Dec 12)

Previous period

Next period