Vulnerability Summary for the Week of January 8, 2024

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abocms -- abo.cms SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary…

Comments Off on Vulnerability Summary for the Week of January 8, 2024

Vulnerability Summary for the Week of January 1, 2024

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 7-card -- fakabao A vulnerability has been found in 7-card Fakabao up to 1.0_build20230805 and classified…

Comments Off on Vulnerability Summary for the Week of January 1, 2024

Vulnerability Summary for the Week of December 25, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info awslabs -- sandbox-accounts-for-events "Sandbox Accounts for Events" provides multiple, temporary AWS accounts to a number of…

Comments Off on Vulnerability Summary for the Week of December 25, 2023

Vulnerability Summary for the Week of December 18, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 52north -- 52north_wps An XXE (XML External Entity) vulnerability has been detected in 52North WPS affecting…

Comments Off on Vulnerability Summary for the Week of December 18, 2023

Vulnerability Summary for the Week of December 11, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acronis -- cyber_protect_home_office Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:…

Comments Off on Vulnerability Summary for the Week of December 11, 2023

Vulnerability Summary for the Week of December 4, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info arm -- bifrost_gpu_kernel_driver Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd…

Comments Off on Vulnerability Summary for the Week of December 4, 2023

Vulnerability Summary for the Week of November 27, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apache -- dolphinscheduler Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler. The…

Comments Off on Vulnerability Summary for the Week of November 27, 2023

Vulnerability Summary for the Week of November 20, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- after_effects Adobe After Effects version 24.0.2 (and earlier) and 23.6 (and earlier) are…

Comments Off on Vulnerability Summary for the Week of November 20, 2023

Vulnerability Summary for the Week of November 13, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info checkpoint -- endpoint_security Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm…

Comments Off on Vulnerability Summary for the Week of November 13, 2023

Vulnerability Summary for the Week of November 6, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 1e -- platform The 1E-Exchange-URLResponseTime instruction that is part of the Network product pack available…

Comments Off on Vulnerability Summary for the Week of November 6, 2023