>> CATEGORY: Security

iOS < 12.2 / macOS < 10.14.4 XNU – pidversion Increment During execve is Unsafe

WebKit JavaScriptCore – Out-Of-Bounds Access in FTL JIT due to LICM Moving Array Access Before the Bounds Check

WebKit JavaScriptCore – CodeBlock Dangling Watchpoints Use-After-Free

AIDA64 Business 5.99.4900 – SEH Buffer Overflow (EggHunter)

TeemIp IPAM < 2.4.0 – 'new_config' Command Injection (Metasploit)

Ashop Shopping Cart Software – SQL Injection

PhreeBooks ERP 5.2.3 – Remote Command Execution

Cisco RV320 and RV325 – Unauthenticated Remote Code Execution (Metasploit)

PhreeBooks ERP 5.2.3 – Arbitrary File Upload

Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 – ‘ReadableStream’ Internal Object Leak Type Confusion