InfoSec News & Tutorials
NAME__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie Networks RG-EW3200GX PRO command executionPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie…
NAME__________Apple Xcode code executionPlatforms Affected:Apple Xcode 14.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple Xcode could allow a local attacker to execute arbitrary code on the system, caused by an issue in the Dev…
NAME__________QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command executionPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified error in QNAP QTS, QNAP QuTS hero, QNAP…
NAME__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie Networks RG-EW3200GX PRO command executionPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie…
NAME__________IEEE 802.11 spoofingPlatforms Affected:IEEE 802.11Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IEEE 802.11 could allow a remote attacker to conduct spoofing attacks, caused by an improper implemented authentication schemes flaw in the Packet Routing…
NAME__________WordPress Ping Optimizer Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WordPress Ping Optimizer Plugin for WordPress 2.35.1.2.3Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WordPress Ping Optimizer Plugin for WordPress is vulnerable to cross-site request…
NAME__________JetBrains IntelliJ IDEA weak securityPlatforms Affected:Risk Level:4.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________JetBrains IntelliJ IDEA could provide weaker than expected security, caused by insufficient verification of data authenticity when importing Gradle and Maven projects.…
NAME__________JetBrains IntelliJ IDEA code executionPlatforms Affected:Risk Level:5.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________JetBrains IntelliJ IDEA could allow a local attacker to execute arbitrary code on the system, caused by the bundled version of Chromium…
NAME__________QNAP QTS, QNAP QuTS hero, QNAP QuTScloud, QNAP QVP (QVR Pro appliances), and QNAP QVR command executionPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified error in QNAP QTS, QNAP QuTS hero, QNAP…
NAME__________Driver Genius code executionPlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Driver Genius could allow a local authenticated attacker to execute arbitrary code on the system, caused by memory corruption in the 0x9C40A0D8/0x9C40A0DC/0x9C40A0E0 function…
NAME__________Driver Genius code executionPlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Driver Genius could allow a local authenticated attacker to execute arbitrary code on the system, caused by memory corruption in the 0x9C406104/0x9C40A108 function…
NAME__________Driver Genius code executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Driver Genius could allow a local authenticated attacker to execute arbitrary code on the system, caused by memory corruption in the 0x9C402088 function…
NAME__________IObit Malware Fighter buffer overflowPlatforms Affected:IObit Malware Fighter 9.4.0.776Risk Level:5.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________IObit Malware Fighter is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the…
NAME__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie Networks RG-EW3200GX PRO command executionPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie…
NAME__________OAuth Single Sign On Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress OAuth Single Sign On plugin for WordPress 6.24.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OAuth Single Sign On Plugin for WordPress is vulnerable…
NAME__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie Networks RG-EW3200GX PRO command executionPlatforms Affected:Risk Level:6.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Ruijie Networks RG-EW1200G PRO, Ruijie Networks RG-EW1800GX PRO, and Ruijie…
NAME__________Apple macOS Ventura buffer overflowPlatforms Affected:Apple macOS Ventura 13.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple macOS Ventura is vulnerable to a buffer overflow, caused by improper bounds checking by the WebKit component. By…
NAME__________Apple macOS Ventura code executionPlatforms Affected:Apple macOS Ventura 13.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple macOS Ventura could allow a local attacker to execute arbitrary code on the system, caused by an out-of-bounds…
NAME__________Apple macOS Ventura integer overflowPlatforms Affected:Apple macOS Ventura 13.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple macOS Ventura could allow a remote attacker to execute arbitrary code on the system, caused by an integer…
NAME__________OAuth Single Sign On Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress OAuth Single Sign On plugin for WordPress 6.24.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OAuth Single Sign On Plugin for WordPress is vulnerable…
NAME__________Apple macOS Ventura spoofingPlatforms Affected:Apple macOS Ventura 13.2Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple macOS Ventura could allow a remote authenticated attacker to conduct spoofing attacks, caused by an issue in NetworkExtension. An…
NAME__________Apple macOS Ventura code executionPlatforms Affected:Apple macOS Ventura 13.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple macOS Ventura could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds…
NAME__________Tailscale command executionPlatforms Affected:Tailscale Tailscale 1.34.0 Tailscale Tailscale 1.38.1Risk Level:5.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Tailscale could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a flaw in…
NAME__________ProPump and Controls Osprey Pump Controller cross-site request forgeryPlatforms Affected:Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ProPump and Controls Osprey Pump Controller is vulnerable to cross-site request forgery, caused by improper validation of user-supplied…