Mail Thread Index
- [SYSS-2018-014] Bestwebsoft PDF & Print - Cross-Site Scripting,
Robin . Trost
- WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0007,
Michael Catanzaro
- [SECURITY] [DSA 4307-1] python3.5 security update,
Moritz Muehlenhoff
- e2 Security GmbH Advisory 2018-01: MensaMax Android app / Unencrypted transmission and usage of hardcoded encryption key,
Stefan Pietsch
- [SECURITY] [DSA 4308-1] linux security update,
Salvatore Bonaccorso
- Stored credentials Ivanti Workspace Control can be retrieved from Registry,
Securify B.V.
- Ivanti Workspace Control Application Whitelist bypass via PowerGrid /RWS command line argument,
Securify B.V.
- Ivanti Workspace Control local privilege escalation via Named Pipe,
Securify B.V.
- Ivanti Workspace Control Application Whitelist bypass via PowerGrid /SEE command line argument,
Securify B.V.
- Ivanti Workspace Control Data Security bypass via localhost UNC path,
Securify B.V.
- SEC Consult SA-20181001-0 :: Password disclosure vulnerability & XSS in PTC ThingWorx (CVE-2018-17216, CVE-2018-17217, CVE-2018-17218),
SEC Consult Vulnerability Lab
- [SECURITY] [DSA 4309-1] strongswan security update,
Yves-Alexis Perez
- [SYSS-2018-023] Password leakage in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17871),
Micha Borrmann
- [SYSS-2018-024] Privilege Escalation in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17872),
Micha Borrmann
- [slackware-security] mozilla-firefox (SSA:2018-276-01),
Slackware Security Team
- [SECURITY] [DSA 4310-1] firefox-esr security update,
Salvatore Bonaccorso
- Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login,
Socket_0x03
- [CVE-2018-11797] DoS vulnerability in Apache PDFBox parser,
Andreas Lehmkuehler
- [SECURITY] [DSA 4311-1] git security update,
Salvatore Bonaccorso
- [UPDATE][CVE-2018-11797] DoS vulnerability in Apache PDFBox parser,
Andreas Lehmkuehler
- [SECURITY] [DSA 4312-1] tinc security update,
Salvatore Bonaccorso
- APPLE-SA-2018-10-08-1 iOS 12.0.1,
Apple Product Security
- APPLE-SA-2018-10-08-2 iCloud for Windows 7.7,
Apple Product Security
- [SECURITY] [DSA 4313-1] linux security update,
Salvatore Bonaccorso
- CVE Request: Sitepress Multilingual CMS Plugin Unauthenticated Stored XSS,
Rahul Pratap Singh
- Responsive Filemanager 9.8.1 Authentication Bypass,
yavuz atlas
- Responsive Filemanager 9.8.1 Reflected Cross Site Scripting (XSS),
yavuz atlas
- SEC Consult SA-20181009-0 :: Remote Code Execution via XMeye P2P Cloud in Xiongmai IP Cameras, NVRs and DVRs incl. 3rd party OEM devices (CVE-2018-17915, CVE-2018-17917, CVE-2018-17919),
SEC Consult Vulnerability Lab
- Pie Register v3.0.17 (WordPress Plugin) - XSS Vulnerability in Forgot-Password,
Socket_0x03
- Zoho ManageEngine OpManager 12.3 allows Unrestricted Arbitrary File Upload,
Murat Aydemir
- SATE VI - Call for Participation,
Delaitre, Aurelien (IntlAssoc)
- CA20181017-01: Security Notice for CA Identity Governance,
Kotas, Kevin J
- [slackware-security] mozilla-firefox (SSA:2018-296-01),
Slackware Security Team
- [SYSS-2018-028] information leakage with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18566,
Micha Borrmann
- Question Answer v1.2.30 (WordPress Plugin) - Multiple XSS Vulnerabilities,
Socket_0x03
- [SYSS-2018-026] missing X.509 validation with AudioCodes IP Phones (Skype for Business, on-premise) - CVE-2018-18567,
Micha Borrmann
- [SYSS-2018-027] missing X.509 validation with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18568,
Micha Borrmann
- [security bulletin] MFSBGN03827 rev.1 - Microfocus Real User Monitoring 9.4.0 BPRDownload Java Deserialization Vulnerability,
cyber-psrt
- [SECURITY] [DSA 4324-1] firefox-esr security update,
Moritz Muehlenhoff
- [SECURITY] [DSA 4325-1] mosquitto security update,
Sebastien Delafond
- [SECURITY] [DSA 4326-1] openjdk-8,
Moritz Muehlenhoff
- [SECURITY] [DSA 4327-1] thunderbird security update,
Moritz Muehlenhoff
- [SECURITY] [DSA 4328-1] xorg-server security update,
Moritz Muehlenhoff
- [CORE-2018-0005] - ASRock Drivers Elevation of Privilege Vulnerabilities,
SecureAuth Advisories Team
- [SECURITY] [DSA 4321-2] graphicsmagick update,
Moritz Muehlenhoff
- [SECURITY] [DSA 4329-1] teeworlds security update,
Moritz Muehlenhoff
- APPLE-SA-2018-10-30-1 iOS 12.1,
Apple Product Security
- APPLE-SA-2018-10-30-3 Safari 12.0.1,
Apple Product Security
- APPLE-SA-2018-10-30-4 watchOS 5.1,
Apple Product Security
- APPLE-SA-2018-10-30-5 tvOS 12.1,
Apple Product Security
- APPLE-SA-2018-10-30-2 macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, Security Update 2018-005 Sierra,
Apple Product Security
- APPLE-SA-2018-10-30-7 iCloud for Windows 7.8,
Apple Product Security
- APPLE-SA-2018-10-30-10 Additional information for APPLE-SA-2018-9-24-5 watchOS 5,
Apple Product Security
- APPLE-SA-2018-10-30-12 Additional information APPLE-SA-2018-10-08-2 iCloud for Windows 7.7,
Apple Product Security
- APPLE-SA-2018-10-30-8 Additional information for APPLE-SA-2018-9-24-4 iOS 12,
Apple Product Security
- APPLE-SA-2018-10-30-9 Additional information for APPLE-SA-2018-9-24-1 macOS Mojave 10.14,
Apple Product Security
- APPLE-SA-2018-10-30-6 iTunes 12.9.1,
Apple Product Security
- APPLE-SA-2018-10-30-14 Additional information for APPLE-SA-2018-7-9-4 macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan,
Apple Product Security
- APPLE-SA-2018-10-30-13 Additional information for APPLE-SA-2018-9-24-2 iTunes 12.9 for Windows,
Apple Product Security
- APPLE-SA-2018-10-30-11 Additional information for APPLE-SA-2018-9-24-6 tvOS 12,
Apple Product Security
Mail converted by MHonArc