Workspace ONE Intelligent Hub version 20.3.8.0 suffers from an unquoted service path vulnerability.
Trojan.Win32.Alien.erf malware suffers from a denial of service vulnerability.
Zoho ManageEngine ServiceDesk Plus version 9.4 suffers from a user enumeration vulnerability.
VX Search version 13.5.28 suffers from an unquoted service path vulnerability.
VeryFitPro version 3.2.8 sends unencrypted cleartext transmission of sensitive information.
Samsung NPU (Neural Processing Unit) suffers from an out-of-bounds write vulnerability in npu_session_format.
Unified Office Total Connect Now version 1.0 suffers from a remote SQL injection vulnerability.
Trojan.Win32.Alien.erf malware suffers from a buffer overflow vulnerability.
Dup Scout version 13.5.28 suffers from an unquoted service path vulnerability.
This Metasploit module exploits an unauthenticated file upload vulnerability in Cisco HyperFlex HX Data Platform’s /upload endpoint to upload and execute a payload as the Tomcat user.