Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Cisco IP Phone 6800, 7800, 7900, and 8800 Series Web UI Vulnerabilities [CVE-2023-20078 & CVE-2023-20079)

Luke Simmonds 2886 Views 0 Comments 3 min read

CVE numbers = CVE-2023-20078 and CVE-2023-20079 Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow

Read More
NewsSecurity Vulnerabilities

Cisco Webex Meetings App Character Interface Manipulation Vulnerability [CVE-2022-20863]

Jason Davies 2426 Views 0 Comments 0 min read

CVE number = CVE-2022-20863 A vulnerability in the messaging interface of Cisco Webex App, formerly Webex Teams, could allow an

Read More
NewsSecurity Vulnerabilities

Cisco Email Security Appliance URL Filtering Bypass Vulnerability [CVE-2023-20057]

Jason Davies 3027 Views 0 Comments 1 min read

CVE number = CVE-2023-20057 A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Appliance

Read More
NewsSecurity Vulnerabilities

Netatalk dsi_writeinit Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2022-43634]

Jason Davies 2450 Views 0 Comments 0 min read

CVE number – CVE-2022-43634 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is

Read More
NewsSecurity Vulnerabilities

D-Link DIR-3040 MiniDLNA Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2022-43648]

Duncan 2402 Views 0 Comments 0 min read

CVE number = CVE-2022-43648 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers.

Read More
NewsSecurity Vulnerabilities

Sudo privilege escalation vulnerability [CVE-2023-22809]

Jason Davies 2974 Views 0 Comments 0 min read

CVE number = CVE-2023-22809 In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided

Read More
NewsSecurity Vulnerabilities

Cisco Unified Communications Manager SQL Injection Vulnerability [CVE-2023-20010]

Luke Simmonds 3216 Views 0 Comments 0 min read

CVE number = CVE-2023-20010 A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco

Read More
NewsSecurity Vulnerabilities

Microsoft Windows GreDrawStream Use-After-Free Local Privilege Escalation Vulnerability [CVE-2022-44671]

Luke Simmonds 2448 Views 0 Comments 0 min read

CVE number = CVE-2022-44671 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read More
NewsSecurity Vulnerabilities

Microsoft Windows PlgBlt Untrusted Pointer Dereference Local Privilege Escalation Vulnerability [CVE-2022-41121]

Jason Davies 2653 Views 0 Comments 0 min read

CVE number = CVE-2022-41121 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read More
NewsSecurity Vulnerabilities

Microsoft Windows StretchBlt Untrusted Pointer Dereference Local Privilege Escalation Vulnerability [CVE-2022-41121]

Jason Davies 2413 Views 0 Comments 0 min read

CVE number = CVE-2022-41121 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read More