Apache Geode versions prior to 1.15.0 are vulnerable to a deserialization of untrusted data flaw when using REST API on Java 8 or Java 11. Any user wishing to protect against deserialization attacks involving REST APIs should upgrade to Apache Geode 1….
[org.apache.geode:geode-core] Apache Geode versions deserialization of untrusted datawhen using JMX over RMI on Java 11
Apache Geode versions up to 1.12.2 and 1.13.2 are vulnerable to a deserialization of untrusted data flaw when using JMX over RMI on Java 11. Any user wishing to protect against deserialization attacks involving JMX or RMI should upgrade to Apache Geode…
[io.quarkus:quarkus-core-parent] Quarkus does not terminate HTTP requests header context
Quarkus is a Cloud Native, (Linux) Container First framework for writing Java applications. It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior. This issue was fixed in version 2.10….
[nvflare] NVFLARE unsafe deserialization due to Pickle
Impact
NVFLARE contains a vulnerability where deserialization of Untrusted Data due to Pickle usage may allow an unprivileged network attacker to cause Remote Code Execution, Denial Of Service, and Impact to both Confidentiality and Integrity.
All ver…
[mdx-mermaid] Improper Control of Generation of Code (‘Code Injection’) in mdx-mermaid
Impact
Arbitary javascript injection
Modify any mermaid code blocks with the following code and the code inside will execute when the component is loaded by MDXjs
` + (function () {
// Put Javascript code here
return ”
}()) + `
The block below sh…
[nitrado.js] Polynomial regular expression used on uncontrolled data in nitrado.js
Impact
Possible ReDoS with lib input of {{ and with many repetitions of {{|
Patches
Patched in all versions above 0.2.5
Workarounds
No known work arounds.
References
OWASP: Regular expression Denial of Service – ReDoS
Wikipedia: ReDoS.
Wikipedia: Time…
[prestashop/productcomments] PrestaShop Product Comments Cross-site Scripting vulnerability
Impact
An attacker could steal an admin’s cookie
Patches
The issue is fixed in 5.0.2
References
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)
References
https://github.com/PrestaShop/productcomments/security/advi…
[matrix-synapse] Denial of service due to incorrect application of event authorization rules
Impact
The Matrix specification specifies a list of event authorization rules which must be checked when determining if an event should be accepted into a room.
In versions of Synapse up to and including v1.61, some of these rules are not correctly app…
[org.yaml:snakeyaml] Uncontrolled Resource Consumption in snakeyaml
The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-25857
https://github.com/snakeyaml/snakeyaml/c…
[x-data-spreadsheet] x-data-spreadsheet through 1.1.9 vulnerable to Cross-site Scripting
All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting (XSS) due to missing sanitization of values inserted into the cells.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-25646
https://github.com/myliang/x-spreadsheet/…