[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26496 Download | Alert*

The host is installed with Cisco AnyConnect Secure Mobility Client before 4.10.07061 is prone to a privilege escalation vulnerability. A flaw is present in the application which fails to handle issues in the client update process. Successful exploitation could allow an attacker to execute code with SYSTEM privileges.

The host is installed with Docker Desktop 4.19.0 before 4.27.1 and is prone to a cache poisoning vulnerability. A flaw is present in the application, which fails to properly handle the classic builder cache system of Moby project. Successful exploitation allows attackers to poison their cache by making them pull a specially crafted image that would be considered as a valid cache candidate for some ...

The host is installed with Docker Desktop before 4.27.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malicious BuildKit client or frontend. Successful exploitation allows attackers to craft a request that could lead to BuildKit daemon crashing with a panic.

The host is installed with Docker Desktop before 4.27.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle the BuildKit APIs when running interactive containers based on built images. Successful exploitation allows attackers to use the BuildKit APIs to ask BuildKit to run a container with elevated privileges.

The host is installed with Docker Desktop before 4.27.1 and is prone to a path traversal vulnerability. A flaw is present in the application, which fails to properly handle a malicious BuildKit frontend or Dockerfile using RUN --mount. Successful exploitation allows attackers to trick the feature that removes empty files created for the mountpoints into removing a file outside the container from t ...

The host is installed with Docker Desktop before 4.27.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle two malicious build steps running in parallel sharing the same cache mounts with subpaths. Successful exploitation allows attackers to cause a race condition that can lead to files from the host system being accessible to ...

The host is installed with Asana Desktop before 1.6.0 and is prone to an improper access control vulnerability. A flaw is present in the application, which fails to handle a malicious web page. Successful exploitation allows remote attackers to exfiltrate local files if they can trick the Asana desktop app into loading a malicious web page.

The host is installed with Adobe InDesign 18.x before 18.2.1 or 17.x before 17.4.1 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to perform denial-of-service.

Use-after-free vulnerability in the Doc.media.newPlayer method in Multimedia.api in Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, allows remote attackers to execute arbitrary code via a crafted PDF file using ZLib compressed streams, as exploited in the wild in December 2009.

Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, might allow attackers to cause a denial of service (NULL pointer dereference) via unspecified vectors.


Pages:      Start    1072    1073    1074    1075    1076    1077    1078    1079    1080    1081    1082    1083    1084    1085    ..   2649

© SecPod Technologies