Ken's Automated News Feed Aggregator
Description. The vulnerability allows a remote attacker to compromise the target system. The vulnerability exists due to prototype pollution. A remote authenticated attacker can modify the prototype of a base object which can vary in severity depending…
Continue ReadingExploit availability: No Description. CWE-20 – Improper Input Validation The vulnerability allows a remote attacker to compromise the affected system. The vulnerability exists due to insufficient validation of user-supplied input within the BlueZ imple…
Continue ReadingAn update for kernel is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, —–BEGIN…
Continue ReadingAn update for kernel is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. —–BEGIN PGP SIGNED MESSAG…
Continue ReadingIn this article, we will solve a Capture the Flag (CTF) challenge that was posted on the VulnHub website by an author named Akanksha Sachin Verma. As per the description given by the author, it is an intermediate-level challenge. The goal is to get roo…
Continue Reading—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA512 – ————————————————————————- Debian Security Advisory DSA-4774-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 19, 2020 h…
Continue Reading– ————————————————————————- Debian Security Advisory DSA-4774-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bona…
Continue ReadingMicrosoft has issued out-of-band patches for two “important” severity vulnerabilities, which if exploited could allow for remote code execution. One flaw (CVE-2020-17023) exists in Microsoft’s Visual Studio Code is a free source-code editor made by Mic…
Continue Reading.
Title: ReQuest Serious Play F3 Media Server 7.0.3 Unauthenticated Remote Code Execution Advisory ID: Type: Local/Remote Impact: System Access, DoS Risk: (5/5) Release Date: 06.10.2020 Summary ZSL-2020-5602 F3 packs all the power of ReQuest’s multi-z…
Continue Reading.
Title: ReQuest Serious Play F3 Media Server 7.0.3 Debug Log Disclosure Advisory ID: Type: Local/Remote ZSL-2020-5600 Impact: Exposure of System Information, Exposure of Sensitive Information Risk: (4/5) Release Date: 06.10.2020 Summary F3 packs all …
Continue Reading