Riasztások | HunCERT csoport

2024. december 18.

NA - CVE-2024-49363 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform. In affected versions FileServerService (media proxy) in github.com/misskey-dev/misskey 2024.10.1 or earlier did not detect proxy loops,...

security-database.com

Tovább

2024. december 18.

Medium - CVE-2024-51470 - IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4...

IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4 LTS, and IBM MQ for HPE NonStop 8.1.0 through 8.1.0.25 could allow an authenticated user to cause a...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-52579 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform. Some APIs using `HttpRequestService` do not properly check the target host. This vulnerability allows an attacker to send POST or GET...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-52590 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform. In affected versions missing validation in `ApRequestService.signedGet` allows an attacker to create fake user profiles that appear to be...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-52591 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform. In affected versions missing validation in `ApRequestService.signedGet` and `HttpRequestService.getActivityJson` allows an attacker to...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-52592 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform. In affected versions missing validation in `ApInboxService.update` allows an attacker to modify the result of polls belonging to another...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-52593 - Misskey is an open source, federated social...

Misskey is an open source, federated social media platform.In affected versions missing validation in `NoteCreateService.insertNote`, `ApPersonService.createPerson`, and...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-53269 - Envoy is a cloud-native high-performance...

Envoy is a cloud-native high-performance edge/middle/service proxy. When additional address are not ip addresses, then the Happy Eyeballs sorting algorithm will crash in data plane. This issue has...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-53270 - Envoy is a cloud-native high-performance...

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active request exists when...

security-database.com

Tovább

2024. december 18.

NA - CVE-2024-53271 - Envoy is a cloud-native high-performance...

Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1 non-101 1xx responses. This can lead to downstream failures in...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.