Oracle Database versions 12.1.0.2, 12.2.0.1, 18c, and 19c suffer from a vault metadata exposure vulnerability.
>> AUTHOR: deepcore
http://www.nokmuang.go.th notified by Ajoyy
Linux suffers from two seccomp bugs with a PT_SUSPEND_SECCOMP permission bypass and ptracer death race condition.
Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
Nexxt Router Firmware version 42.103.1.5095 authenticated remote code execution exploit that enables telnetd.
Proof of concept overview on how the DBMS_REDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c.
BDWeb-Link LMS version 1.11.5 suffers from a remote SQL injection vulnerability.
SugarCRM versions up to 12.2.0 suffer from a remote shell upload vulnerability.
Oracle versions 12.1.0.2, 12.2.0.1, and 19c suffer from a Unified Audit Policy bypass vulnerability.
The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements.