SuiteCRM versions 7.11.11 and below suffer from a second-order php object injection vulnerability.
>> CATEGORY: exploit
SuiteCRM versions 7.11.11 and below suffer from multiple phar deserialization vulnerabilities.
Pandora FMS version 7.0 suffers from an authenticated remote code execution vulnerability.
OpenTFTP version 1.66 suffers from a local privilege escalation vulnerability.
SuiteCRM versions 7.11.11 and below suffer from an action_saveHTMLField bean manipulation vulnerability.
SuiteCRM versions 7.11.11 and below suffer from an add_to_prospect_list broken access control that allows for local file inclusion attacks.
SuiteCRM versions 7.11.10 and below suffer from multiple remote SQL injection vulnerabilities.
launchd on macOS and iOS suffer from a memory corruption issue due to a lack of bounds checking when parsing XPC messages.
XPC fast path fails to ensure NULL termination of XPC strings, leading to memory disclosure and corruption vulnerabilities in XPC services.
The Samsung kernel suffers from a heap out-of-bounds write in /dev/tsmux.