RedTeam Pentesting discovered an undocumented service account in the REDDOXX appliance software, which allows attackers to access the administrative interface of the appliance and change its configuration. Affected versions include…
>> CATEGORY: exploit
RedTeam Pentesting discovered a vulnerability which allows attackers unauthenticated access to the diagnostic functions of the administrative interface of the REDDOXX appliance. The functions allow, for example, to capture network…
RedTeam Pentesting discovered a remote command execution vulnerability in the REDDOXX appliance software, which allows attackers to execute arbitrary command with root privileges while unauthenticated. Affected versions include build 2032…
WebKit JSC suffers from an uninitialized memory reference in arrayProtoFuncSplice.
WebKit suffers from a JSC incorrect scope register handling in DFG::ByteCodeParser::flush(InlineStackEntry* inlineStackEntry).
WebKit suffers from a JSC JSArray::appendMemcpy uninitialized memory copy vulnerability.
MEDHOST Connex suffers from having hard-coded credentials that are used for customer database access.
WebKit JSC JSObject::putInlineSlow and JSValue::putToPrimitive suffer from a universal cross site scripting vulnerability.
WebKit suffers from a WebCore::Node::nextSibling use-after-free vulnerability.
WebKit suffers from a WebCore::getCachedWrapper use-after-free vulnerability.