iMessage suffers from an issue where decoding NSSharedKeyDictionary can read an ObjC object at attacker controlled address.
>> ARCHIVE: 2019-11
An issue exists with Adobe Acrobat Reader DC for Windows use of an uninitialized pointer due to malformed JBIG2Globals stream.
An issue exists where Adobe Acrobat Reader DC for Windows makes use of an uninitialized pointer due to a malformed OTF font (CFF table).
Honeywell MCR Web Controller suffers from cross site scripting and path disclosure vulnerabilities. Versions affected include XL1000C50 EXCEL WEB 52 I/O, XL1000C500 EXCEL WEB 300 I/O, XL1000C100 EXCEL WEB 104…
Eset Mobile Security application for Android version 5.2.18.0 suffers from an application locking bypass vulnerability.
Wondershare Application Framework Service 2.4.3.231 – ‘WsAppService’ Unquote Service Path
eMerge E3 1.00-06 – Unauthenticated Directory Traversal
Acronis True Image OEM 19.0.5128 – ‘afcdpsrv’ Unquoted Service Path
Computrols CBAS-Web 19.0.0 – ‘username’ Reflected Cross-Site Scripting
Prima FlexAir Access Control 2.3.38 – Remote Code Execution