>> CATEGORY: Security

NUUO NVRMini2 3.9.1 – Authenticated Command Injection

Wireshark – ‘cdma2k_message_ACTIVE_SET_RECORD_FIELDS’ Stack Corruption

Wireshark – ‘find_signature’ Heap Out-of-Bounds Read

HP Intelligent Management – Java Deserialization RCE (Metasploit)

Xorg X11 Server (AIX) – Local Privilege Escalation

Dolibarr ERP/CRM 8.0.3 – Cross-Site Scripting

Rockwell Automation Allen-Bradley PowerMonitor 1000 – Incorrect Access Control Authentication Bypass

NEC Univerge Sv9100 WebPro – 6.00 – Predictable Session ID / Clear Text Password Storage

FreshRSS 1.11.1 – Cross-Site Scripting

Linux/x64 – Reverse (0.0.0.0:1907/TCP) Shell Shellcode (119 Bytes)