When sending Matrix requests using an affected version of matrix-sdk in an application that writes logs using tracing-subscriber (in a way that includes fields of tracing spans such as tracing_subscribers default text output from the fmt module), these…
[@dependencytrack/frontend] @dependencytrack/frontend vulnerable to Persistent Cross-Site-Scripting via Vulnerability Details
Description
Due to the common practice of providing vulnerability details in markdown format, the Dependency-Track frontend renders them using the JavaScript library Showdown. Showdown does not have any XSS countermeasures built in, and versions before…
[github.com/openfga/openfga] OpenFGA Authorization Bypass via tupleset wildcard
Overview
During our internal security assessment, it was discovered that OpenFGA versions v0.2.3 and prior are vulnerable to authorization bypass under certain conditions.
Am I affected?
You are affected by this vulnerability if you are using openfga/o…
[github.com/openfga/openfga] OpenFGA Authorization Bypass
Overview
During our internal security assessment, it was discovered that OpenFGA versions v0.2.3 and prior are vulnerable to authorization bypass under certain conditions.
Am I Affected?
You are affected by this vulnerability if you are using openfga/o…
[github.com/openfga/openfga] OpenFGA subject to Information Disclosure via streamed-list-objects endpoint
Overview
During our internal security assessment, it was discovered that streamed-list-objects endpoint was not validating the authorization header resulting in the disclosure of objects in the store.
Am I Affected?
You are affected by this vulnerabili…
[org.apache.geode:geode-core] Apache Geode vulnerable to Cross-Site Scripting
Apache Geode versions up to 1.15.0 are vulnerable to a Cross-Site Scripting (XSS) via data injection when using Pulse web application to view Region entries.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-34870
https://lists.apache.org/thread/zl…
[pulp-ansible] Plaintext storage of tokens in pulp_ansible
The collection remote for pulp_ansible stores tokens in plaintext instead of using pulp’s encrypted field and exposes them in read/write mode via the API () instead of marking it as write only.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-364…
[github.com/free5gc/free5gc] free5GC vulnerable to malformed NGAP message crashing the AMF and NGAP decoders
In free5GC 3.2.1, a malformed NGAP message can crash the AMF and NGAP decoders via an index-out-of-range panic in aper.GetBitString.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-43677
https://github.com/free5gc/free5gc/issues/402
https://githu…
[Microsoft.NETCore.App.Runtime.Mono.linux-arm] .NET Core Information Disclosure Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0, .NET Core 3.1 and .NET Core 2.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerab…
[io.github.skylot:jadx-plugins-api] Jadx-gui vulnerable to swing HTML Denial of Service (DoS) attack
Impact
Using jadx-gui to open a special zip file with entry containing HTML sequence like <html><frame> will cause interface to get stuck and throw exceptions like:
java.lang.RuntimeException: Can’t build aframeset, BranchElement(frameset) …