Brandon Blackburn · @brandon
144 followers · 32 posts · Server ioc.dev
zyk · @zyk
767 followers · 401 posts · Server mastodon.nz

This one looks horrible:
A stack-based overflow vulnerability [CWE-124] in FortiOS & FortiProxy may allow a remote attacker to execute arbitrary code or command via crafted packets reaching proxy policies or firewall policies with proxy mode alongside SSL deep packet inspection.

FortiOS version 7.2.0 through 7.2.3
FortiOS version 7.0.0 through 7.0.10
FortiProxy version 7.2.0 through 7.2.2
FortiProxy version 7.0.0 through 7.0.9

fortiguard.com/psirt/FG-IR-23-

#fortigate #vuln #cvss #arbexec

Last updated 1 year ago

postmodern · @postmodern
1241 followers · 1610 posts · Server ruby.social

So many Ruby vulnerabilities seem to stem from using `Kernel.open()`. We should deprecate `open("|command-here")` and encourage Rubyists to use either `IO.popen()` or `URI.open()`.
45w1nkv.medium.com/ruby-code-v

#ruby #security #vuln

Last updated 1 year ago

iCyberFighter · @iCyberFighter
277 followers · 224 posts · Server infosec.exchange

patches two critical remote code execution security flaws
 CVE-2022-41903: Heap overflow in `git archive`, `git log --format` leading to RCE

 CVE-2022-23521: When parsing gitattributes, multiple integer overflows can occur when there is a huge number of path patterns, a huge number of attributes for a single pattern, or when the declared attribute names are huge.

#git #github #patchmanagement #vuln

Last updated 2 years ago

Ben Tasker · @ben
321 followers · 945 posts · Server mastodon.bentasker.co.uk

I didn't cover it in my post as it was a tangent (and I'm a sucker for those), but I think it's absolutely *wild* that includes instance domain and build version in it's HTTP user-agent

> "Friendica 'Giant Rhubarb' 2023.03-dev-1502; https://<redacted instance domain>"

If someone were looking to exploit a Friendica the access logs of any other instance provide a useful way to find targets - once you've popped one, it's logs will tell you all it's friends and their versions

#friendica #vuln

Last updated 2 years ago

riftman · @riftman
16 followers · 20 posts · Server infosec.exchange

CISA adds JasperReports vulnerabilities to its Known Exploited Vulnerabilities Catalog - Cyware via CyberNews on iOS CISA adds JasperReports vulnerabilities to its Known Exploited Vulnerabilities Catalog - Cyware via CyberNews on iOS
securityaffairs.com/140131/sec

#cybersec #vuln

Last updated 2 years ago

bad_boy · @bad_boy
26 followers · 131 posts · Server infosec.exchange

Google Releases Open-Source Vulnerability Scanning Tool
infoq.com/news/2022/12/google-

-Scanner

#osv #google #scan #vuln

Last updated 2 years ago

Bishop Fox · @BishopFox
691 followers · 83 posts · Server infosec.exchange

Researcher Matthew Rutledge found an in FlowScreenComponents BasePack library version 3.0.7.

An attacker could exploit this to perform actions in the context of the affected users. The impact of this vulnerability includes taking over targeted users’ sessions. Additional impact depends on the functionality of the affected application.

To resolve this issue, restrict user access to the page with the vulnerability until an updated version of the library without the vulnerability is released.

See the full story in our technical advisory ⬇

bishopfox.com/blog/flowscreenc

#xss #vulnerability #vuln

Last updated 2 years ago

Cappy Ishihara · @korewaChino
18 followers · 17 posts · Server mstdn.social

I have discovered a forced browsing vulnerabilty in the exams page that allows you to get the answers from the exams, and also submit scores in someone else's place.

#vuln #CyberSecurity #thai #tds #Thailand

Last updated 2 years ago

Cappy Ishihara :verigold: · @korewaChino
1 followers · 23 posts · Server mstdn.social

I have discovered a forced browsing vulnerabilty in the exams page that allows you to get the answers from the exams, and also submit scores in someone else's place.

#vuln #CyberSecurity #thai #tds #Thailand

Last updated 2 years ago

Finally (!!!) I was able to publish these vulns I found on Arcadyan Routers (distributed by many ISPs in the world including Telmex/Infinitum). It ain't much but it is honest work. :ablobcatwave:​

gist.github.com/AsherDLL/03d07

#iot #routers #Arcadyan #vulnerabilities #vuln #vulnerability

Last updated 2 years ago

Finally (!!!) I was able to publish these vulns I found on Arcadyan Routers (distributed by many ISPs in the world including Telmex/Infinitum). It ain't much but it is honest work. :ablobcatwave:​

gist.github.com/AsherDLL/03d07

#iot #routers #Arcadyan #vulnerabilities #vuln #vulnerability

Last updated 2 years ago

iCyberFighter · @iCyberFighter
246 followers · 153 posts · Server infosec.exchange

[] [] [] Back in September 2022 a critical Microsoft vulnerability in the SPNEGO Extended Negotiation () Security Mechanism was disclosed.

Most recently, IBM X-Force Security Researcher, Valentina Palmiotti (@chompie), discovered that exploitation of this vulnerability could allow an attacker to remotely execute arbitrary code.

Due to that discovery, Microsoft has now classified this vulnerability as “Critical.” Test and patch ASAP. Original CVE: CVE-2022-37958 | cve.mitre.org/cgi-bin/cvename.

#vuln #spengo #PatchNOW #negoex

Last updated 2 years ago

LovikSecurity · @LovikSecurity
3 followers · 18 posts · Server ioc.exchange
SecureWaffle🧇 · @SecureWaffle
49 followers · 223 posts · Server twit.social

was notified of a security in their client and recommending everyone to update to v1.32.3 (stable channel) as soon as possible.

Here is a link to the security bulletins page: tailscale.com/security-bulleti

#Tailscale #vuln

Last updated 2 years ago

iCyberFighter · @iCyberFighter
153 followers · 53 posts · Server infosec.exchange

Critical RCE Flaw Reported in Backstage Software Catalog and Developer Platform This is CVE-2022-36067 - Sandbreak (CVSS Score: 9.8): nvd.nist.gov/vuln/detail/CVE-2 |

#spotify #vuln #riskmitigation

Last updated 2 years ago

vPierre · @vPierre
18 followers · 477 posts · Server mas.to
iCyberFighter · @iCyberFighter
122 followers · 44 posts · Server infosec.exchange

[] For those tracking the upcoming release of a new version of , version 3.0.7, which contains a patch for an undisclosed critical rated vulnerability in current versions of the technology. The Open SSL Project will be releasing the update on Tuesday, November 1st. Preparations should be made to adopt this update as soon as possible due to its critical nature and potential risk. Details on the vuln have not been released yet to hinder weaponization. zdnet.com/article/openssl-warn |

#vuln #openssl #infosec #cybersecurity #encryption

Last updated 2 years ago

Gabriel/Arch :BlobhajReach: · @arch
121 followers · 547 posts · Server tech.lgbt