Full Disclosure A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. More importantly, fresh vulnerabilities sometimes hit this list many hours or days before they pass through the Bugtraq moderation queue.
- SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)on November 13, 2024 at 3:43 am
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Nov 12SEC Consult Vulnerability Lab Security Advisory < 20241112-0 > ======================================================================= title: Multiple vulnerabilities product: Siemens Energy Omnivise T3000 vulnerable version: >=8.2 SP3 fixed version: see solution section CVE number: CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879 impact: High…
- Security issue in the TX Text Control .NET Server for ASP.NET.on November 13, 2024 at 3:43 am
Posted by Filip Palian on Nov 12Hej, Let’s keep it short … ===== Intro ===== A “sudo make me a sandwich” security issue has been identified in the TX Text Control .NET Server for ASP.NET[1]. According to the vendor[2], “the most powerful, MS Word compatible document editor that runs in all browsers”. Likely all versions are affected however, it was not confirmed. ===== Issue ===== It was possible to change the configured system path for…
- SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updateron November 10, 2024 at 3:17 am
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Nov 09SEC Consult Vulnerability Lab Security Advisory < 20241107-0 > ======================================================================= title: Multiple Vulnerabilities product: HASOMED Elefant and Elefant Software Updater vulnerable version: <24.04.00, Elefant Software Updater <1.4.2.1811 fixed version: 24.04.00, Elefant Software Updater 1.4.2.1811 CVE number: CVE-2024-50588,…
- Unsafe eval() in TestRail CLIon November 7, 2024 at 3:17 am
Posted by Devin Cook on Nov 06This is not a very exciting vulnerability, but I had already publicly disclosed it on GitHub at the request of the vendor. Since that report has disappeared, the link I had provided to MITRE was invalid, so here it is again. -Devin — # Unsafe `eval()` in TestRail CLI FieldsParser Date Reported: 2024-10-03 CVSSv3.1 Score: 7.3 CVSSv3.1 Vector: AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Severity: Medium Vulnerability Class: Eval Injection ## Summary…
- 4 vulnerabilities in ibmsecurityon November 3, 2024 at 2:35 pm
Posted by Pierre Kim on Nov 03## Advisory Information Title: 4 vulnerabilities in ibmsecurity Advisory URL: https://pierrekim.github.io/advisories/2024-ibmsecurity.txt Blog URL: https://pierrekim.github.io/blog/2024-11-01-ibmsecurity-4-vulnerabilities.html Date published: 2024-11-01 Vendors contacted: IBM Release mode: Released CVE: CVE-2024-31871, CVE-2024-31872, CVE-2024-31873, CVE-2024-31874 ## Product description ## Vulnerability Summary Vulnerable versions:…
- 32 vulnerabilities in IBM Security Verify Accesson November 3, 2024 at 2:35 pm
Posted by Pierre Kim on Nov 03## Advisory Information Title: 32 vulnerabilities in IBM Security Verify Access Advisory URL: https://pierrekim.github.io/advisories/2024-ibm-security-verify-access.txt Blog URL: https://pierrekim.github.io/blog/2024-11-01-ibm-security-verify-access-32-vulnerabilities.html Date published: 2024-11-01 Vendors contacted: IBM Release mode: Released CVE: CVE-2022-2068, CVE-2023-30997, CVE-2023-30998, CVE-2023-31001, CVE-2023-31004, CVE-2023-31005,…
- xlibre Xnest security advisory & bugfix releaseson October 31, 2024 at 5:02 pm
Posted by Enrico Weigelt, metux IT consult on Oct 31XLibre project security advisory ——————————— As Xlibre Xnest is based on Xorg, it is affected by some security issues which recently became known in Xorg: CVE-2024-9632: can be triggered by providing a modified bitmap to the X.Org server. CVE-2024-9632: Heap-based buffer overflow privilege escalation in _XkbSetCompatMap See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632 Affected versions: * 24.1.0…
- APPLE-SA-10-29-2024-1 Safari 18.1on October 31, 2024 at 5:02 pm
Posted by Apple Product Security via Fulldisclosure on Oct 31APPLE-SA-10-29-2024-1 Safari 18.1 Safari 18.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121571. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Safari Downloads Available for: macOS Ventura and macOS Sonoma Impact: An attacker may be able to misuse a trust relationship to…
- SEC Consult SA-20241030-0 :: Query Filter Injection in Ping Identity PingIDM (formerly known as ForgeRock Identity Management) (CVE-2024-23600)on October 31, 2024 at 5:02 pm
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Oct 31SEC Consult Vulnerability Lab Security Advisory < 20241030-0 > ======================================================================= title: Query Filter Injection product: Ping Identity PingIDM (formerly known as ForgeRock Identity Management) vulnerable version: v7.0.0 – v7.5.0 (and older unsupported versions) fixed version: various patches; v8.0 CVE number:…
- SEC Consult SA-20241023-0 :: Authenticated Remote Code Execution in Multiple Xerox printers (CVE-2024-6333)on October 29, 2024 at 1:54 am
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Oct 28SEC Consult Vulnerability Lab Security Advisory < 20241023-0 > ======================================================================= title: Authenticated Remote Code Execution product: Multiple Xerox printers (EC80xx, AltaLink, VersaLink, WorkCentre) vulnerable version: see vulnerable versions below fixed version: see solution section below CVE number: CVE-2024-6333…
- APPLE-SA-10-28-2024-8 visionOS 2.1on October 29, 2024 at 1:54 am
Posted by Apple Product Security via Fulldisclosure on Oct 28APPLE-SA-10-28-2024-8 visionOS 2.1 visionOS 2.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121566. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. App Support Available for: Apple Vision Pro Impact: A malicious app may be able to run arbitrary shortcuts without user consent…
- APPLE-SA-10-28-2024-7 tvOS 18.1on October 29, 2024 at 1:54 am
Posted by Apple Product Security via Fulldisclosure on Oct 28APPLE-SA-10-28-2024-7 tvOS 18.1 tvOS 18.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121569. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. App Support Available for: Apple TV HD and Apple TV 4K (all models) Impact: A malicious app may be able to run arbitrary shortcuts without…
- APPLE-SA-10-28-2024-6 watchOS 11.1on October 29, 2024 at 1:54 am
Posted by Apple Product Security via Fulldisclosure on Oct 28APPLE-SA-10-28-2024-6 watchOS 11.1 watchOS 11.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121565. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Accessibility Available for: Apple Watch Series 6 and later Impact: An attacker with physical access to a locked device may be able to…
- APPLE-SA-10-28-2024-5 macOS Ventura 13.7.1on October 29, 2024 at 1:54 am
Posted by Apple Product Security via Fulldisclosure on Oct 28APPLE-SA-10-28-2024-5 macOS Ventura 13.7.1 macOS Ventura 13.7.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121568. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. App Support Available for: macOS Ventura Impact: A malicious app may be able to run arbitrary shortcuts without user…
- APPLE-SA-10-28-2024-4 macOS Sonoma 14.7.1on October 29, 2024 at 1:54 am
Posted by Apple Product Security via Fulldisclosure on Oct 28APPLE-SA-10-28-2024-4 macOS Sonoma 14.7.1 macOS Sonoma 14.7.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/121570. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. App Support Available for: macOS Sonoma Impact: A malicious app may be able to run arbitrary shortcuts without user…