Mail Index

• Thread Index

• [FD] SEC Consult SA-20230502-0 :: Bypassing cluster isolation through insecure defaults and shared storage in Databricks Platform
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] APPLE-SA-2023-05-03-1 AirPods Firmware Update 5E133 and Beats Firmware Update 5B66
  • From: Apple Product Security via Fulldisclosure
• [FD] SCHUTZWERK-SA-2023-001: SQL Injection in Spryker Commerce OS
  • From: Lennert Preuth via Fulldisclosure
• [FD] OXAS-ADV-2023-0001: OX App Suite Security Advisory
  • From: Martin Heiland via Fulldisclosure
• [FD] CyberDanube Security Research 20230511-0 | Multiple Vulnerabilities in Advantech EKI-15XX Series
  • From: Thomas Weber
• [FD] SEC Consult SA-20230515-0 :: Multiple Vulnerabilities in Kiddoware Kids Place Parental Control Android App
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-1 iOS 16.5 and iPadOS 16.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-03-27-2 iOS 15.7.4 and iPadOS 15.7.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-3 macOS Ventura 13.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-4 macOS Monterey 12.6.6
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-5 macOS Big Sur 11.7.7
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-6 tvOS 16.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-8 Safari 16.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-7 watchOS 9.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-2023-05-18-2 iOS 15.7.6 and iPadOS 15.7.6
  • From: Apple Product Security via Fulldisclosure
• [FD] SEC Consult SA-20230516-0 :: Multiple Vulnerabilities in Serenity and StartSharp Software
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] SEC Consult SA-20230517-0 :: Stored XSS vulnerability in rename functionality in Wekan (Open-Source kanban)
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] Printerlogic multiple vulnerabilities
  • From: Eldar Marcussen
• [FD] [RT-SA-2023-003] Pydio Cells: Unauthorised Role Assignments
  • From: RedTeam Pentesting GmbH
• [FD] [RT-SA-2023-004] Pydio Cells: Cross-Site Scripting via File Download
  • From: RedTeam Pentesting GmbH
• [FD] [RT-SA-2023-005] Pydio Cells: Server-Side Request Forgery
  • From: RedTeam Pentesting GmbH
• [FD] SCHUTZWERK-SA-2022-001: Cross-Site-Scripting in Papaya Medical Viewer
  • From: Lennert Preuth via Fulldisclosure
• [FD] CVE-2022-48331 - Buffer Overflow in Widevine Trustlet (drm_save_keys @ 0x69b0)
  • From: Cyber Intel Security
• [FD] CVE-2022-48332 - Buffer Overflow in Widevine Trustlet (drm_save_keys @ 0x6a18)
  • From: Cyber Intel Security
• [FD] CVE-2022-48333 - Buffer Overflow in Widevine Trustlet (drm_verify_keys @ 0x730c)
  • From: Cyber Intel Security
• [FD] CVE-2022-48334 - Buffer Overflow in Widevine Trustlet (drm_verify_keys @ 0x7370)
  • From: Cyber Intel Security
• [FD] CVE-2022-48335 - Buffer Overflow in Widevine Trustlet (PRDiagVerifyProvisioning @ 0x5f90)
  • From: Cyber Intel Security
• [FD] CVE-2022-48336 - Buffer Overflow in Widevine Trustlet (PRDiagParseAndStoreData @ 0x5cc8)
  • From: Cyber Intel Security