:: Deepquest ::

User Management System version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Complaint Management System version 4.2 suffers from a persistent cross site scripting vulnerability.

AMD Radeon DirectX 11 Driver version 8.17.10.0871 suffers from a memory corruption vulnerability.

Complaint Management System version 4.2 suffers a remote SQL injection vulnerability that allows for authentication bypass.

Complaint Management System version 4.2 suffers from a cross site request forgery vulnerability.

This Metasploit module exploits an authenticated directory traversal vulnerability in Zen Load Balancer version 3.10.1. The flaw exists in index.cgi not properly handling the filelog= parameter which allows a malicious actor to load arbitrary file path.

When WebRTC processes a packet using FEC, it does not adequately check bounds when zeroing the video timing extension.

Chrome suffers from an issue where a data race in AudioArray::Allocate can lead to out-of-bounds access.

WebRTC suffers from an out-of-bounds memory write in the method RtpFrameReferenceFinder::UpdateLayerInfoH264. This occurs when updating the layer info with the frame marking extension.

WebKit has a data race condition in AudioArray::allocate that can lead to out-of-bounds access.