The os_socketaddr crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation.
T…
[indy-node] Indy’s NODE_UPGRADE transaction vulnerable to remote code execution
Impact
The pool-upgrade request handler in Indy-Node <=1.12.4 allows an improperly authenticated attacker to remotely execute code on nodes within the network.
Network operators are strongly encouraged to upgrade to the latest Indy-Node release >…
[org.apache.shenyu:shenyu-common] Apache ShenYu Admin v2.4.2-v2.4.3 has insecure permissions
Apache ShenYu Admin has insecure permissions, which may allow low-privilege administrators to modify high-privilege administrator’s passwords. This issue affects Apache ShenYu 2.4.2 and 2.4.3. Version 2.5.0 contains a patch for this issue.
References
…
[francoisjacquet/rosariosis] francoisjacquet/rosariosis vulnerable to Cross-Site Scripting (XSS)
Cross-site Scripting (XSS) – Stored in GitHub repository francoisjacquet/rosariosis prior to 8.9.3.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-3072
https://github.com/francoisjacquet/rosariosis/commit/dcd3b86156bf9e981944e1a9e01ea23d8ad7c83a…
[python-scciclient] python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server’s certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
References
https://nvd.nist.go…
[org.keycloak:keycloak-core] Keycloak vulnerable to Cross-Site Scripting (XSS)
A stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7. This flaw allows a privileged attacker to execute malicious scripts in the admin console, abusing the default roles functionality.
Reference…
[lz4-sys] lz4-sys vulnerable to memory corruption via issue in liblz4
lz4-sys up to v1.9.3 bundles a version of liblz4 that is vulnerable to
CVE-2021-3520.
Attackers could craft a payload that triggers an integer overflow upon
decompression, causing an out-of-bounds write.
The flaw has been corrected in version v1.9.4 of…
[github.com/ElrondNetwork/elrond-go] elrond-go MultiESDTNFTTransfer call on a SC address with missing function name
Impact
Anyone who uses elrond-go to process blocks (historical or actual) that contains a transaction like this: MultiESDTNFTTransfer@01@54444558544b4b5955532d323631626138@00@0793afc18c8da2ca@ (mind the missing function name after the last @)
Basic fun…
[go.pinniped.dev] Pinniped Supervisor Insufficient Session Expiration vulnerability
Impact
A user authenticating to Kubernetes clusters via the Pinniped Supervisor could potentially use their access token to continue their session beyond what proper use of their refresh token might allow.
Access tokens issued by the Pinniped Superviso…
[github.com/fluxcd/flux2] Flux CLI Workload Injection
Flux CLI allows users to deploy Flux components into a Kubernetes cluster via command-line. The vulnerability allows other applications to replace the Flux deployment information with arbitrary content which is deployed into the target Kubernetes clust…