Security News

CVE-2019-6647

National Vulnerability Database - Wed, 09/04/2019 - 13:15
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, when processing authentication attempts for control-plane users MCPD leaks a small amount of memory. Under rare conditions attackers with access to the management interface could eventually deplete memory on the system.
Categories: Security News

CVE-2019-6648

National Vulnerability Database - Wed, 09/04/2019 - 12:15
On version 1.9.0, If DEBUG logging is enable, F5 Container Ingress Service (CIS) for Kubernetes and Red Hat OpenShift (k8s-bigip-ctlr) log files may contain BIG-IP secrets such as SSL Private Keys and Private key Passphrases as provided as inputs by an AS3 Declaration.
Categories: Security News

CVE-2019-13975

National Vulnerability Database - Wed, 09/04/2019 - 12:15
eGain Chat 15.0.3 allows HTML Injection.
Categories: Security News

CVE-2019-13976

National Vulnerability Database - Wed, 09/04/2019 - 12:15
eGain Chat 15.0.3 allows unrestricted file upload.
Categories: Security News

CVE-2019-6645

National Vulnerability Database - Wed, 09/04/2019 - 12:15
On BIG-IP 14.0.0-14.1.0.5, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, FTP traffic passing through a Virtual Server with both an active FTP profile associated and connection mirroring configured may lead to a TMM crash causing the configured HA action to be taken.
Categories: Security News

CVE-2019-15916

National Vulnerability Database - Wed, 09/04/2019 - 11:15
An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.
Categories: Security News

CVE-2019-13518

National Vulnerability Database - Wed, 09/04/2019 - 11:15
An attacker could use a specially crafted project file to overflow the buffer and execute code under the privileges of the EZ Touch Editor Versions 2.1.0 and prior.
Categories: Security News

CVE-2019-13522 (ez_plc_editor)

National Vulnerability Database - Wed, 09/04/2019 - 11:15
An attacker could use a specially crafted project file to corrupt the memory and execute code under the privileges of the EZ PLC Editor Versions 1.8.41 and prior.
Categories: Security News

CVE-2019-10988

National Vulnerability Database - Wed, 09/04/2019 - 10:15
In Philips HDI 4000 Ultrasound Systems, all versions running on old, unsupported operating systems such as Windows 2000, the HDI 4000 Ultrasound System is built on an old operating system that is no longer supported. Thus, any unmitigated vulnerability in the old operating system could be exploited to affect this product.
Categories: Security News

CVE-2019-13209

National Vulnerability Database - Wed, 09/04/2019 - 10:15
Rancher 2 through 2.2.4 is vulnerable to a Cross-Site Websocket Hijacking attack that allows an exploiter to gain access to clusters managed by Rancher. The attack requires a victim to be logged into a Rancher server, and then to access a third-party site hosted by the exploiter. Once that is accomplished, the exploiter is able to execute commands against the cluster's Kubernetes API with the permissions and identity of the victim.
Categories: Security News

CVE-2019-15813 (sentrifugo)

National Vulnerability Database - Wed, 09/04/2019 - 10:15
Multiple file upload restriction bypass vulnerabilities in Sentrifugo 3.2 could allow authenticated users to execute arbitrary code via a webshell.
Categories: Security News

CVE-2019-15814 (sentrifugo)

National Vulnerability Database - Wed, 09/04/2019 - 10:15
Multiple stored XSS vulnerabilities in Sentrifugo 3.2 could allow authenticated users to inject arbitrary web script or HTML.
Categories: Security News

CVE-2019-12587

National Vulnerability Database - Wed, 09/04/2019 - 08:15
The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames via a rogue access point.
Categories: Security News

CVE-2019-12588

National Vulnerability Database - Wed, 09/04/2019 - 08:15
The client 802.11 mac implementation in Espressif ESP8266_NONOS_SDK 2.2.0 through 3.1.0 does not validate correctly the RSN AuthKey suite list count in beacon frames, probe responses, and association responses, which allows attackers in radio range to cause a denial of service (crash) via a crafted message.
Categories: Security News

CVE-2019-15718

National Vulnerability Database - Wed, 09/04/2019 - 08:15
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the system D-Bus instance), calls sd_bus_set_trusted, which disables access controls for incoming D-Bus messages. An unprivileged user can exploit this by executing D-Bus methods that should be restricted to privileged users, in order to change the system's DNS resolver settings.
Categories: Security News

CVE-2019-10709

National Vulnerability Database - Wed, 09/04/2019 - 08:15
AsusPTPFilter.sys on Asus Precision TouchPad 11.0.0.25 hardware has a Pool Overflow associated with the \\.\AsusTP device, leading to a DoS or potentially privilege escalation via a crafted DeviceIoControl call.
Categories: Security News

CVE-2019-15902

National Vulnerability Database - Wed, 09/04/2019 - 02:15
A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.
Categories: Security News

CVE-2019-15903

National Vulnerability Database - Wed, 09/04/2019 - 02:15
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.
Categories: Security News

BlueHat Seattle 2019 Call for Papers is Now Open!

Security Research & Defense - Tue, 09/03/2019 - 19:01
2019 has seen a phenomenal BlueHatIL in February followed by a wildly successful BlueHat Shanghai in May… now it’s time to come back home for BlueHat Seattle!  2 days of hands-on technical training (October 22-23, 2019)  2 days of conference talks from industry-leading security researchers and cyber defenders (October 24-25, 2019)  great creative spaces ready …

BlueHat Seattle 2019 Call for Papers is Now Open! Read More »

Categories: Security News

CVE-2019-15898

National Vulnerability Database - Tue, 09/03/2019 - 18:15
Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page.
Categories: Security News

Pages