:: Deepquest ::

DiskBoss Enterprise version 8.5.12 suffers from a denial of service vulnerability.

Sync Breeze Enterprise version 10.1.16 suffers from a denial of service vulnerability.

Disk Pulse Enterprise version 10.1.18 suffers from a denial of service vulnerability.

VX Search Enterprise version 10.1.12 suffers from a denial of service vulnerability.

Yawcam versions 0.2.6 through 0.6.0 suffer from a directory traversal vulnerability.

This Metasploit module exploits multiple vulnerabilities in Synology PhotoStation. When combined these issues can be leveraged to gain a remote root shell.

Synology PhotoStation versions 6.7.2-3429 and below suffer from file disclosure and remote SQL injection vulnerabilities.

This Metasploit module exploits a command injection vulnerability discovered in Commvault Service v11 SP5 and earlier versions (tested in v11 SP5 and v10). The vulnerability exists in the cvd.exe service and allows an attacker to execute arbitrary commands in the context of the service. By default, the Commvault Communications service installs and runs as SYSTEM […]

Apple Security Advisory 2018-1-8-1 – iOS 11.2.2 is now available and and addresses Spectre issues with Safari and WebKit.

Apple Security Advisory 2018-1-8-2 – macOS High Sierra 10.13.2 Supplemental Update includes security improvements to Safari and WebKit to mitigate the effects of Spectre.