admidio -- admidio
|
SQL Injection was discovered in adm_program/modules/dates/dates_function.php in Admidio 3.2.5. The POST parameter dat_cat_id is concatenated into a SQL query without any input validation/sanitization.
|
2017-03-05
|
|
|
apache -- camel
|
Apache Camel's camel-jackson and camel-jacksonxml components are vulnerable to Java object de-serialization vulnerability. Camel allows to specify such a type through the 'CamelJacksonUnmarshalType' property. De-serializing untrusted data can lead to security flaws as demonstrated in various similar reports about Java de-serialization issues.
|
2017-03-07
|
|
|
apache -- camel
|
Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization vulnerability. De-serializing untrusted data can lead to security flaws.
|
2017-03-07
|
|
|
asus -- rt-ac53_firmware
|
Buffer overflows in networkmap in ASUS ASUSWRT on RT-AC53 3.0.0.4.380.6038 devices allow remote attackers to execute arbitrary code on the router via a long host or port in crafted multicast messages.
|
2017-03-09
|
|
|
asus -- rt-ac53_firmware
|
Session hijack vulnerability in httpd in ASUS ASUSWRT on RT-AC53 3.0.0.4.380.6038 devices allows remote attackers to steal any active admin session by sending cgi_logout and asusrouter-Windows-IFTTT-1.0 in certain HTTP headers.
|
2017-03-09
|
|
|
d-link -- di-524_firmware
|
Multiple cross-site request forgery (CSRF) vulnerabilities on the D-Link DI-524 Wireless Router with firmware 9.01 allow remote attackers to (1) change the admin password, (2) reboot the device, or (3) possibly have unspecified other impact via crafted requests to CGI programs.
|
2017-03-06
|
|
|
debian -- debian_linux
|
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request.
|
2017-03-07
|
|
|
espeak-ruby_project -- espeak-ruby
|
The espeak-ruby gem before 1.0.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a string to the speak, save, bytes or bytes_wav method in lib/espeak/speech.rb.
|
2017-03-03
|
|
|
exponentcms -- exponent_cms
|
SQL injection vulnerability in cron/find_help.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the version parameter.
|
2017-03-07
|
|
|
|
他にも SQL injection が10件弱
|
|
|
|
festivaltts4r_project -- festivaltts4r
|
The festivaltts4r gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a string to the (1) to_speech or (2) to_mp3 method in lib/festivaltts4r/festival4r.rb.
|
2017-03-03
|
|
|
flexense -- sysgauge
|
An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 (aka "Service ready") string.
|
2017-03-05
|
|
|
google -- android
|
A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33139050.
|
2017-03-07
|
|
|
|
他にもメディアサーバでのリモートコード実行脆弱性10件弱。CVSS Scoreも9.3が並んでる
|
|
|
|
google -- android
|
An elevation of privilege vulnerability in the recovery verifier could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-31914369.
|
2017-03-07
|
|
|
google -- android
|
他にも権限昇格数件(原因箇所は異なる)。CVSS Score 9.3
|
|
|
|
google -- android
|
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33090864.
|
2017-03-07
|
|
|
google -- android
|
他にも メディアサーバのDoS 数件。中略・・・
|
|
|
|
google -- android
|
An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver, could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-28429685. References: M-ALPS02710006.
|
2017-03-07
|
|
|
|
他にも、Media Tek components や、Broadcom Wi-Fi driver, Media Teck APK に端を発する権限昇格問題あり。CVSS Score 、いずれも9.3
|
|
|
|
|
・・・中略・・・
|
|
|
|
ibm -- qradar_security_information_
and_event_manager
|
IBM QRadar 7.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IBM Reference #: 1999537.
|
2017-03-07
|
|
|
ibm -- qradar_security_information_
and_event_manager
|
IBM QRadar Incident Forensics 7.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM Reference #: 1999542.
参考:
「IBM Security QRadar Incident Forensicsは、潜在的なアタッカーの段階的行動をさかのぼり、疑わしい悪意のあるネットワーク・セキュリティー・インシデントに対する綿密なフォレンジック調査を素早く簡単に実行できます。これは、セキュリティー・チームがQRadarの攻撃レコードを調査するために要する時間を、多くの場合、日単位から時間単位または分単位に短縮します。また、ネットワークのセキュリティー侵害を修復し、再発を防止できます。」
|
2017-03-07
|
|
|
|
・・・中略・・・
|
|
|
|
linux -- linux_kernel
|
An elevation of privilege vulnerability in the Qualcomm GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31824853. References: QC-CR#1093687.
|
2017-03-07
|
|
|
linux -- linux_kernel
|
NVIDIA GPU driver も権限昇格脆弱性あり。CVSS Score いずれも9.3
|
2017-03-07
|
|
|
linux -- linux_kernel
|
An information disclosure vulnerability in the Qualcomm bootloader could help to enable a local malicious application to to execute arbitrary code within the context of the bootloader. This issue is rated as High because it is a general bypass for a bootloader level defense in depth or exploit mitigation technology. Product: Android. Versions: Kernel-3.18. Android ID: A-32370952. References: QC-CR#1082755.
|
2017-03-07
|
|
|
|
他にも Qualcomm 各種ドライバーで権限昇格の脆弱性。省略
|
|
|
|
linux -- linux_kernel
|
An elevation of privilege vulnerability in the kernel ION subsystem,
in the kernel FIQ debugger
・・・中略・・・
|
2017-03-07
|
|
|
linux -- linux_kernel
|
An elevation of privilege vulnerability in the kernel security subsystem could enable a local malicious application to to execute code in the context of a privileged process. This issue is rated as High because it is a general bypass for a kernel level defense in depth or exploit mitigation technology. Product: Android. Versions: Kernel-3.18. Android ID: A-33351919.
|
2017-03-07
|
|
|
| | | | |
|
・・・続く・・・
|
|
|
|
No comments:
Post a Comment