Messages by Date
-
2024/05/09
[FD] Microsoft PlayReady - complete client identity compromise
Security Explorations
-
2024/05/06
[FD] secuvera-SA-2024-02: Multiple Persistent Cross-Site Scritping (XSS) flaws in Drupal-Wiki
Simon Bieber via Fulldisclosure
-
2024/05/06
[FD] OXAS-ADV-2024-0002: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/05/06
[FD] Microsoft PlayReady toolkit - codes release
Security Explorations
-
2024/05/03
[FD] Live2D Cubism refusing to fix validation issue leading to heap corruption.
PT via Fulldisclosure
-
2024/05/01
[FD] Microsoft PlayReady white-box cryptography weakness
Security Explorations
-
2024/04/24
[FD] Defense in depth -- the Microsoft way (part 87): shipping more rotten software to billions of unsuspecting customers
Stefan Kanthak
-
2024/04/24
[FD] Response to CVE-2023-26756 - Revive Adserver
Matteo Beccati
-
2024/04/19
[FD] BACKDOOR.WIN32.DUMADOR.C / Remote Stack Buffer Overflow (SEH)
malvuln
-
2024/04/19
[FD] SEC Consult SA-20240418-0 :: Broken authorization in Dreamehome app
SEC Consult Vulnerability Lab via Fulldisclosure
-
2024/04/19
[FD] MindManager 23 - full disclosure
Pawel Karwowski via Fulldisclosure
-
2024/04/14
[FD] CVE-2024-31705
V3locidad
-
2024/04/14
[FD] SEC Consult SA-20240411-0 :: Database Passwords in Server Response in Amazon AWS Glue
SEC Consult Vulnerability Lab via Fulldisclosure
-
2024/04/11
[FD] [KIS-2024-03] Invision Community <= 4.7.16 (toolbar.php) Remote Code Execution Vulnerability
Egidio Romano
-
2024/04/11
[FD] [KIS-2024-02] Invision Community <= 4.7.15 (store.php) SQL Injection Vulnerability
Egidio Romano
-
2024/04/11
[FD] Multiple Issues in concretecmsv9.2.7
Andrey Stoykov
-
2024/04/10
[FD] OXAS-ADV-2024-0001: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/04/10
[FD] Trojan.Win32.Razy.abc / Insecure Permissions (In memory IPC)
malvuln
-
2024/04/10
[FD] CVE-2023-27195: Broken Access Control - Registration Code in TM4Web v22.2.0
Clément Cruchet
-
2024/04/05
[FD] [CFP] IEEE CSR Workshop on Cyber Forensics& Advanced Threat Investigations in Emerging Technologies 2024
Andrew Zayine
-
2024/04/05
[FD] Backdoor.Win32.Agent.ju (PSYRAT) / Authentication Bypass RCE
malvuln
-
2024/04/05
[FD] CVE-2024-30928: SQL Injection Vulnerability in DerbyNet v9.0 via 'classids' Parameter
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30927: XSS Vulnerability in DerbyNet v9.0 via racer-results.php
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30926: XSS Vulnerability in DerbyNet v9.0 via ./inc/kiosks.inc
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30924: XSS Vulnerability in DerbyNet v9.0 via checkin.php
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30923: SQL Injection in DerbyNet v9.0 via print/render/racer.inc
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30922: SQL Injection in DerbyNet v9.0 via print/render/award.inc
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30921: Unauthenticated XSS Vulnerability in DerbyNet v9.0 via photo.php
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] CVE-2024-30920: XSS Vulnerability in DerbyNet v9.0 via render-document.php
Valentin Lobstein via Fulldisclosure
-
2024/04/05
[FD] SCHUTZWERK-SA-2023-006: Arbitrary File Read via XML External Entities in Visual Planning
Lennert Preuth via Fulldisclosure
-
2024/04/05
[FD] SCHUTZWERK-SA-2023-004: Authentication Bypass via Password Reset Functionality in Visual Planning
Lennert Preuth via Fulldisclosure
-
2024/04/05
[FD] SCHUTZWERK-SA-2023-003: Authentication Bypass in Visual Planning REST API
Lennert Preuth via Fulldisclosure
-
2024/04/02
[FD] Microsoft PlayReady deficiencies / content key sniffing on Windows
Security Explorations
-
2024/03/28
[FD] Intel PowerGadget 3.6 Local Privilege Escalation
Julian Horoszkiewicz via Fulldisclosure
-
2024/03/27
[FD] Application is Vulnerable to Session Fixation
YOGESH BHANDAGE
-
2024/03/27
[FD] APPLE-SA-03-25-2024-1 Safari 17.4.1
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] APPLE-SA-03-25-2024-2 macOS Sonoma 14.4.1
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] APPLE-SA-03-25-2024-4 iOS 17.4.1 and iPadOS 17.4.1
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] APPLE-SA-03-25-2024-5 iOS 16.7.7 and iPadOS 16.7.7
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] APPLE-SA-03-25-2024-6 visionOS 1.1.1
Apple Product Security via Fulldisclosure
-
2024/03/27
[FD] Escape sequence injection in util-linux wall (CVE-2024-28085)
Skyler Ferrante (RIT Student) via Fulldisclosure
-
2024/03/27
[FD] Circontrol EV Charger vulnerabilities (CVE-2020-8006, CVE-2020-8007)
Dariusz G
-
2024/03/19
[FD] Backdoor.Win32.Emegrab.b / Remote Stack Buffer Overflow (SEH)
malvuln
-
2024/03/13
[FD] MetaFox Remote Shell Upload Exploit
j0ck1ng@tempr.email
-
2024/03/13
[FD] SEC Consult SA-20240307-0 :: Local Privilege Escalation via writable files in Checkmk Agent (CVE-2024-0670)
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/03/13
[FD] HNS-2024-05 - HN Security Advisory - Multiple vulnerabilities in RT-Thread RTOS
Marco Ivaldi
-
2024/03/13
[FD] APPLE-SA-03-12-2024-1 GarageBand 10.4.11
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-7 visionOS 1.1
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-6 tvOS 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-5 watchOS 10.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-4 macOS Monterey 12.7.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-3 macOS Ventura 13.6.5
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-2 macOS Sonoma 14.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-1 Safari 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-05-2024-2 iOS 16.7.6 and iPadOS 16.7.6
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-05-2024-1 iOS 17.4 and iPadOS 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] Backdoor.Win32.Beastdoor.oq / Unauthenticated Remote Command Execution
malvuln
-
2024/03/13
[FD] StimulusReflex CVE-2024-28121
lixts via Fulldisclosure
-
2024/03/13
[FD] [Full Disclosure] CVE-2024-25228: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-004: Artica Proxy Loopback Services Remotely Accessible Unauthenticated
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-003: Artica Proxy Unauthenticated File Manager Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-002: Artica Proxy Unauthenticated PHP Deserialization Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-001: Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/02
[FD] SEC Consult SA-20240226-0 :: Local Privilege Escalation via DLL Hijacking in Qognify VMS Client Viewer
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/03/02
[FD] JetStream Smart Switch - TL-SG2210P v5.0/ Improper Access Control / CVE-2023-43318
Shaikh Shahnawaz
-
2024/03/02
[FD] Multiple XSS Issues in boidcmsv2.0.1
Andrey Stoykov
-
2024/03/02
[FD] XAMPP 5.6.40 - Error Based SQL Injection
Andrey Stoykov
-
2024/03/02
[FD] BACKDOOR.WIN32.AGENT.AMT / Authentication Bypass
malvuln
-
2024/03/02
[FD] Backdoor.Win32.Jeemp.c / Cleartext Hardcoded Credentials
malvuln
-
2024/03/02
[FD] BACKDOOR.WIN32.AUTOSPY.10 / Unauthenticated Remote Command Execution
malvuln
-
2024/03/02
[FD] BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext Credentials
malvuln
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through Cookie Manipulation - CVE-2023-38946
Vinícius Moraes
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through URL Manipulation - CVE-2023-38945
Vinícius Moraes
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through Header Manipulation - CVE-2023-38944
Vinícius Moraes
-
2024/02/20
[FD] SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/02/20
Re: [FD] Buffer Overflow in graphviz via via a crafted config6a file
Matthew Fernandez
-
2024/02/20
[FD] CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool
Jeroen J.A.W. Hermans via Fulldisclosure
-
2024/02/20
[FD] Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass
hyp3rlinx
-
2024/02/20
[FD] Microsoft Windows Defender / VBScript Detection Bypass
hyp3rlinx
-
2024/02/20
[FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3
hyp3rlinx
-
2024/02/15
[FD] 44CON 2024 September 18th - 20th CFP
Florent Daigniere via Fulldisclosure
-
2024/02/13
[FD] SEC Consult SA-20240212-0 :: Multiple Stored Cross-Site Scripting vulnerabilities in Statamic CMS
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/02/13
[FD] Stored XSS and RCE - adaptcmsv3.0.3
Andrey Stoykov
-
2024/02/13
[FD] OXAS-ADV-2023-0007: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/02/13
[FD] Android passkeys unexpectedly deleted or useless after sync
Erik van Straten (FD)
-
2024/02/13
[FD] Buffer Overflow Vulnerabilities in KiTTY Start Duplicated Session Hostname (CVE-2024-25003) & Username (CVE-2024-25004) Variables
Austin DeFrancesco via Fulldisclosure
-
2024/02/13
[FD] Command Injection Vulnerability in KiTTY Get Remote File Through SCP Input (CVE-2024-23749)
Austin DeFrancesco via Fulldisclosure
-
2024/02/13
[FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 2.
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Incorrect Access Control - Credentials Disclosure / CVE-2024-25735
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Account Enumeration / CVE-2024-25734
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736
hyp3rlinx
-
2024/02/13
[FD] IBM i Access Client Solutions / Remote Credential Theft / CVE-2024-22318
hyp3rlinx
-
2024/02/04
[FD] APPLE-SA-02-02-2024-1 visionOS 1.0.2
Apple Product Security via Fulldisclosure
-
2024/02/04
[FD] Out-of-bounds read & write in the glibc's qsort()
Qualys Security Advisory via Fulldisclosure
-
2024/02/04
[FD] CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog()
Qualys Security Advisory via Fulldisclosure
-
2024/02/04
[FD] Research about usage & possible issues of the NVD
Andreas Hammer
-
2024/02/04
[FD] TROJAN.WIN32 BANKSHOT / Remote Stack Buffer Overflow (SEH)
malvuln
-
2024/02/04
[FD] [KIS-2024-01] XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability
Egidio Romano
-
2024/02/04
[FD] NULL pointer dereference in the function handle_viminfo_register() of vim
Christian Brabandt
-
2024/01/27
Re: [FD] Buffer Overflow in graphviz via via a crafted config6a file
Matthew Fernandez
-
2024/01/27
[FD] CVEs based on commit messages
Mark Esler
-
2024/01/27
Re: [FD] null pointer deference in nano via read_the_list()
Mark Esler
-
2024/01/27
Re: [FD] NULL pointer dereference in freedesktop Mesa via check_xshm()
Dan Cross
-
2024/01/27
Re: [FD] Null pointer dereference in Xedit
Alan Coopersmith
-
2024/01/26
[FD] Buffer overflow in Sane
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in tex-live
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in MiniZinc via a crafted Preferences.json file
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in LLVM
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in tex-live via a crafted cmr10.pfb
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in Sane via a crafted config file
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in MiniZinc via a crafted .mzn file
Meng Ruijie
-
2024/01/26
[FD] Buffer Overflow in graphviz via via a crafted config6a file
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in QT via the function QXcbConnection::initializeAllAtoms()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in nano via read_the_list()
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in freedesktop Mesa via check_xshm()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gtk via parse_settings() at xsettings-client.c
Meng Ruijie
-
2024/01/26
[FD] SEGV in S-Lang via fixup_tgetstr()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gtk via init_randr15() at gdkscreen-x11.c
Meng Ruijie
-
2024/01/26
[FD] arithmetic exception in S-lang via the function tt_sprintf()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gdk-pixbuf
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in GNU Midnight at /tty/x11conn.c
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in glXGetDrawableScreen() of OpenGL libglvnd
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in XIQueryDevice() of gnome gtk
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in __glXGetDrawableAttribute() of Mesa
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in the function handle_viminfo_register() of vim
Meng Ruijie
-
2024/01/26
[FD] Null pointer deference in XGetWMHints() of Xfig
Meng Ruijie
-
2024/01/26
[FD] Buffer Overflow in glXQueryServerString() of mesa
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in tgetstr() of ncurses
Meng Ruijie
-
2024/01/26
[FD] Null pointer dereference in Xedit
Meng Ruijie
-
2024/01/26
[FD] Null pointer deference in freedesktop mesa
Meng Ruijie
-
2024/01/26
[FD] Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
Rahim, Mohaiman via Fulldisclosure
-
2024/01/26
[FD] Yet another fork()/malloc() bomb in javascript + SIGILL in Chrome
Georgi Guninski
-
2024/01/26
[FD] TrojanSpy Win32 Nivdort / Insecure Permissions - EoP (SYSTEM)
malvuln
-
2024/01/26
[FD] APPLE-SA-01-22-2024-9 tvOS 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-8 watchOS 10.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-7 macOS Monterey 12.7.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-6 macOS Ventura 13.6.4
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-5 macOS Sonoma 14.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-4 iOS 15.8.1 and iPadOS 15.8.1
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-3 iOS 16.7.5 and iPadOS 16.7.5
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-2 iOS 17.3 and iPadOS 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-1 Safari 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22903: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22902: Default Root Credentials in Vinchin Backup & Recovery v7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22901: Default MYSQL Credentials in Vinchin Backup & Recovery v7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22899: Unpatched Command Injection in Vinchin Backup and Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22900: Unpatched Command Injection in Vinchin Backup and Recovery Versions 7.2 and Earlier
Balgogan via Fulldisclosure
-
2024/01/26
[FD] [SBA-ADV-20200707-02] CVE-2020-36772: CloudLinux CageFS 7.0.8-2 or below Insufficiently Restricted Proxy Command
SBA - Advisory via Fulldisclosure
-
2024/01/26
[FD] [SBA-ADV-20200707-01] CVE-2020-36771: CloudLinux CageFS 7.1.1-1 or below Token Disclosure
SBA - Advisory via Fulldisclosure
-
2024/01/18
Re: [FD] ODR violation in Redis Raft
Jeffrey Walton
-
2024/01/18
[FD] Minor firefox DoS - semi silently polluting ~/Downloads with files (part 2)
Georgi Guninski
-
2024/01/17
[FD] Legends of IdleOn - I Reject Your RNG And Substitute My Own
Soatok Dreamseeker
-
2024/01/17
[FD] Buffer over-read in dtls_sha256_update of TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Misues same epoch number within TCP lifetime in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Assertion failure in check_certificate_request() of TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Buffer over-read in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Infinite loop leading to buffer overflow in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Mishandle epoch number in TinyDTLS servers
Meng Ruijie
-
2024/01/17
[FD] Incorrect handshake in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] ODR violation in Redis Raft
Meng Ruijie
-
2024/01/14
[FD] Backdoor.Win32 Carbanak (Anunak) / Named Pipe Null DACL
malvuln
-
2024/01/14
[FD] CyberDanube Security Research 20240109-0 | Multiple Vulnerabilities in JetNet Series
Thomas Weber via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Harry Sintonen via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Harry Sintonen via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Georgi Guninski
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
fulldisclosure
-
2024/01/14
Re: [FD] [SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management
SBA - Advisory via Fulldisclosure
-
2024/01/08
[FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Georgi Guninski
-
2024/01/08
[FD] OXAS-ADV-2023-0006: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/01/08
[FD] OXAS-ADV-2023-0005: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/01/08
[FD] SSH-Snake: Automated SSH-Based Network Traversal
Joshua Rogers
-
2024/01/04
[FD] RansomLord v2 - Anti-Ransomware Exploitation Tool / New Release
hyp3rlinx
-
2024/01/04
[FD] Windows PowerShell Single Quote Code Execution / Event Log Bypass
hyp3rlinx
-
2023/12/26
[FD] [ES2023-02] FreeSWITCH susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] asterisk release 20.5.1
Asterisk Development Team via Fulldisclosure
-
2023/12/19
[FD] asterisk release 18.20.1
Asterisk Development Team via Fulldisclosure
-
2023/12/19
[FD] CORRECTED asterisk release 21.0.1
Asterisk Development Team
-
2023/12/19
[FD] CORRECTED asterisk release certified-18.9-cert6
Asterisk Development Team
-
2023/12/19
[FD] [ES2023-03] RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] [ES2023-01] Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] [KIS-2023-14] PKP-WAL <= 3.4.0-3 (NativeImportExportPlugin) Remote Code Execution Vulnerability
Egidio Romano
-
2023/12/19
[FD] [SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management
SBA - Advisory via Fulldisclosure
-
2023/12/19
[FD] APPLE-SA-12-19-2023-1 macOS Sonoma 14.2.1
Apple Product Security via Fulldisclosure
-
2023/12/19
[FD] Disclosure of CVE-2023-50917: RCE Vulnerability in MajorDoM
Balgogan via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creator
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231205 :: Argument injection leading to unauthenticated RCE and authentication bypass in Atos Unify OpenScape Session Border Controller (SBC), Branch, BCF
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-8 watchOS 10.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-7 tvOS 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-6 macOS Monterey 12.7.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-5 macOS Ventura 13.6.3
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-4 macOS Sonoma 14.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-3 iOS 16.7.3 and iPadOS 16.7.3
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-2 iOS 17.2 and iPadOS 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-1 Safari 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-3 macOS Sonoma 14.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-2 iOS 17.1.2 and iPadOS 17.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-1 Safari 17.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] [KIS-2023-13] ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability
Egidio Romano