macOS 10.14.6 (18G87) – Kernel Use-After-Free due to Race Condition in wait_for_namespace_event()
>> ARCHIVE: 2019-12
Rumpus FTP Web File Manager 8.2.9.1 – Reflected Cross-Site Scripting
AVS Audio Converter 9.1 – ‘Exit folder’ Buffer Overflow
Xerox AltaLink C8035 Printer – Cross-Site Request Forgery (Add Admin)
Tautulli 2.1.9 – Cross-Site Request Forgery (ShutDown)
http://necsystem.dip.go.th/index.html notified by Jean Maroc
http://angelfund.dip.go.th/index.html notified by Jean Maroc
Squiz Matrix CMS suffers from PHP unserialization code execution, information disclosure, and arbitrary file deletion vulnerabilities.
D-Link DIR-615 suffers from a privilege escalation vulnerability.
Linux suffers from a privilege escalation vulnerability via io_uring offload of sendmsg() onto kernel thread with kernel creds.