Mail Index

• Thread Index

• [FD] Microsoft Defender Anti-Malware PowerShell API - Arbitrary Code Execution
  • From: hyp3rlinx
• [FD] [CFP] BSides San Francisco - May 2024
  • From: BSidesSF CFP via Fulldisclosure
• [FD] [KIS-2023-13] ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability
  • From: Egidio Romano
• [FD] APPLE-SA-11-30-2023-1 Safari 17.1.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-11-30-2023-2 iOS 17.1.2 and iPadOS 17.1.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-11-30-2023-3 macOS Sonoma 14.1.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-1 Safari 17.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-2 iOS 17.2 and iPadOS 17.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-3 iOS 16.7.3 and iPadOS 16.7.3
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-4 macOS Sonoma 14.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-5 macOS Ventura 13.6.3
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-6 macOS Monterey 12.7.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-7 tvOS 17.2
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-12-11-2023-8 watchOS 10.2
  • From: Apple Product Security via Fulldisclosure
• [FD] HNS-2023-04 - HN Security Advisory - Buffer overflow vulnerabilities with long path names in TinyDir
  • From: Marco Ivaldi
• [FD] SEC Consult SA-20231128 :: Missing Certificate Validation & User Enumeration in Anveo Mobile App and Server
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] SEC Consult SA-20231205 :: Argument injection leading to unauthenticated RCE and authentication bypass in Atos Unify OpenScape Session Border Controller (SBC), Branch, BCF
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creator
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] Disclosure of CVE-2023-50917: RCE Vulnerability in MajorDoM
  • From: Balgogan via Fulldisclosure
• [FD] APPLE-SA-12-19-2023-1 macOS Sonoma 14.2.1
  • From: Apple Product Security via Fulldisclosure
• [FD] [SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management
  • From: SBA - Advisory via Fulldisclosure
• [FD] [KIS-2023-14] PKP-WAL <= 3.4.0-3 (NativeImportExportPlugin) Remote Code Execution Vulnerability
  • From: Egidio Romano
• [FD] [ES2023-01] Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation
  • From: Sandro Gauci
• [FD] [ES2023-03] RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation
  • From: Sandro Gauci
• [FD] CORRECTED asterisk release certified-18.9-cert6
  • From: Asterisk Development Team
• [FD] CORRECTED asterisk release 21.0.1
  • From: Asterisk Development Team
• [FD] asterisk release 18.20.1
  • From: Asterisk Development Team via Fulldisclosure
• [FD] asterisk release 20.5.1
  • From: Asterisk Development Team via Fulldisclosure
• [FD] [ES2023-02] FreeSWITCH susceptible to Denial of Service via DTLS Hello packets during call initiation
  • From: Sandro Gauci