RSS HKCERT

  • Synology Products Multiple Vulnerabilities October 20, 2024
    Multiple vulnerabilities were identified in Synology products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, security restriction bypass and denial of service condition on the targeted system. Impact Remote Code Execution Denial of Service Security Restriction Bypass System / Technologies affected BeeStation OS versions below 1.1-65373 Synology Camera BC500 […]
  • NetApp Products Multiple Vulnerabilities October 20, 2024
    Multiple vulnerabilities were identified in NetApp Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and data manipulation on the targeted system. Impact Denial of Service Data Manipulation Information Disclosure System / Technologies affected E-Series SANtricity OS Controller Software 11.x ONTAP tools for VMware vSphere 9 […]
  • Microsoft Edge Multiple Vulnerabilities October 18, 2024
    Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, security restriction bypass, denial of service condition and remote code execution on the targeted system. Impact Denial of Service Spoofing Remote Code Execution Security Restriction Bypass System / Technologies affected Microsoft Edge (Stable) version prior to 130.0.2849.46 Solutions […]
  • Kubernetes Multiple Vulnerabilities October 17, 2024
    Multiple vulnerabilities were identified in Kubernetes. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass and elevation of privilege on the targeted system. Impact Security Restriction Bypass Elevation of Privilege System / Technologies affected Kubernetes Image Builder version v0.1.37 or earlier Solutions Before installation of the software, please visit the software vendor […]
  • IBM WebSphere Products Multiple Vulnerabilities October 17, 2024
    Multiple vulnerabilities were identified in IBM WebSphere Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and sensitive information disclosure on the targeted system.   [Updated on 2024-10-22] Updated Impact, System / Technologies affected, ... Impact Denial of Service Information Disclosure System / Technologies affected IBM WebSphere Application Server 8.5 […]
  • F5 Products Multiple Vulnerabilities October 17, 2024
    Multiple vulnerabilities were identified in F5 Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege and cross-site scripting on the targeted system.   Note: No patch is currently available for CVE-2019-10768... Impact Denial of Service Elevation of Privilege Cross-Site Scripting System / Technologies affected BIG-IP […]
  • Oracle Products Multiple Vulnerabilities October 16, 2024
    Multiple vulnerabilities were identified in Oracle Products, a remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, denial of service condition, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.   [Updated... Impact Denial of Service Remote Code Execution Security Restriction Bypass Information Disclosure Elevation of […]
  • Splunk Products Multiple Vulnerabilities October 16, 2024
    Multiple vulnerabilities were identified in Splunk products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service condition, elevation of privilege, remote code execution, security restriction bypass and sensitive information disclosure on the targeted system. Impact Cross-Site Scripting Denial of Service Elevation of Privilege Remote Code Execution Security Restriction […]
  • Google Chrome Multiple Vulnerabilities October 16, 2024
    Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, denial of service condition and remote code execution on the targeted system. Impact Denial of Service Remote Code Execution Security Restriction Bypass System / Technologies affected Google Chrome prior to 130.0.6723.58 (Linux) Google Chrome prior to 130.0.6723.58/.59 (Mac) […]
  • ChromeOS Multiple Vulnerabilities October 16, 2024
    Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system.   Impact Remote Code Execution Denial of Service System / Technologies affected ChromeOS Stable version prior to 16002.58.0(Browser version prior to 129.0.6668.110) ChromeOS LTS version prior to 126.0.6478.255 (Platform Version […]