Full Disclosure: by date

PreviousPrevious period
Next periodNext

30 messages starting Dec 12 23 and ending Dec 26 23
Date index | Thread index | Author index

Tuesday, 12 December

Microsoft Defender Anti-Malware PowerShell API - Arbitrary Code Execution hyp3rlinx
[CFP] BSides San Francisco - May 2024 BSidesSF CFP via Fulldisclosure
[KIS-2023-13] ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability Egidio Romano
APPLE-SA-11-30-2023-1 Safari 17.1.2 Apple Product Security via Fulldisclosure
APPLE-SA-11-30-2023-2 iOS 17.1.2 and iPadOS 17.1.2 Apple Product Security via Fulldisclosure
APPLE-SA-11-30-2023-3 macOS Sonoma 14.1.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-1 Safari 17.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-2 iOS 17.2 and iPadOS 17.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-3 iOS 16.7.3 and iPadOS 16.7.3 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-4 macOS Sonoma 14.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-5 macOS Ventura 13.6.3 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-6 macOS Monterey 12.7.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-7 tvOS 17.2 Apple Product Security via Fulldisclosure
APPLE-SA-12-11-2023-8 watchOS 10.2 Apple Product Security via Fulldisclosure
HNS-2023-04 - HN Security Advisory - Buffer overflow vulnerabilities with long path names in TinyDir Marco Ivaldi
SEC Consult SA-20231128 :: Missing Certificate Validation & User Enumeration in Anveo Mobile App and Server SEC Consult Vulnerability Lab, Research via Fulldisclosure
SEC Consult SA-20231205 :: Argument injection leading to unauthenticated RCE and authentication bypass in Atos Unify OpenScape Session Border Controller (SBC), Branch, BCF SEC Consult Vulnerability Lab, Research via Fulldisclosure
SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension SEC Consult Vulnerability Lab, Research via Fulldisclosure
SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creator SEC Consult Vulnerability Lab, Research via Fulldisclosure

Tuesday, 19 December

Disclosure of CVE-2023-50917: RCE Vulnerability in MajorDoM Balgogan via Fulldisclosure
APPLE-SA-12-19-2023-1 macOS Sonoma 14.2.1 Apple Product Security via Fulldisclosure
[SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management SBA - Advisory via Fulldisclosure
[KIS-2023-14] PKP-WAL <= 3.4.0-3 (NativeImportExportPlugin) Remote Code Execution Vulnerability Egidio Romano
[ES2023-01] Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci
[ES2023-03] RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci
CORRECTED asterisk release certified-18.9-cert6 Asterisk Development Team
CORRECTED asterisk release 21.0.1 Asterisk Development Team
asterisk release 18.20.1 Asterisk Development Team via Fulldisclosure
asterisk release 20.5.1 Asterisk Development Team via Fulldisclosure

Tuesday, 26 December

[ES2023-02] FreeSWITCH susceptible to Denial of Service via DTLS Hello packets during call initiation Sandro Gauci
PreviousPrevious period
Next periodNext