Latest Vulnerabilities

Last week saw multiple vulnerabilities affecting popular software. Starship prompt versions before 1.2 had issues with C++ exceptions handling. Streamlit-geospatial had blind SSRF and remote code execution flaws, making pages vulnerable. Additionally, a Lenovo Tab K10 validation flaw and various privilege escalation flaws in XCC were identified. Furthermore, ChurchCRM was found to be susceptible to SQL injection. Users should update affected software immediately and stay vigilant against potential security risks.

GHSA-vx24-x4mv-vwr5
## Description Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidenta...
rust/starship>=1.0.0<=1.19.0
GHSA-66fw-43h8-f8p3
Affected versions of the crate failed to catch C++ exceptions raised within the `XmpFile::close` function. If such an exception occured, it would trigger undefined behavior, typically a process abort....
rust/xmp_toolkit<1.9.0
CVE-2024-41815
Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
rust/starship>=1.0.0<=1.19.0
CVE-2024-41120
streamlit-geospatial blind SSRF in pages/9_🔲_Vector_Data_Visualization.py
CVE-2024-41119
streamlit-geospatial remote code execution in pages/8_🏜️_Raster_Data_Visualization.py
CVE-2024-41118
streamlit-geospatial blind SSRF in pages/7_📦_Web_Map_Service.py
CVE-2024-41117
Remote code execution in streamlit geospatial in pages/10_🌍_Earth_Engine_Datasets.py
CVE-2024-41116
Remote code execution in streamlit geospatial in pages/1_📷_Timelapse.py MODIS Ocean Color SMI option vis_params
CVE-2024-41115
Remote code execution in streamlit geospatial in pages/1_📷_Timelapse.py MODIS Ocean Color SMI option palette
CVE-2024-41114
Remote code execution in streamlit geospatial in pages/1_📷_Timelapse.py MODIS Gap filled Land Surface Temperature Daily option
CVE-2024-41113
Remote code execution in streamlit geospatial in pages/1_📷_Timelapse.py Any Earth Engine ImageCollection option vis_params
CVE-2024-41112
Remote code execution in streamlit geospatial in pages/1_📷_Timelapse.py Any Earth Engine ImageCollection option palette
CVE-2024-4786
An improper validation vulnerability was reported in the Lenovo Tab K10 that could allow a specially crafted application to keep the device on.
CVE-2024-38512
A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.
CVE-2024-38511
A privilege escalation vulnerability was discovered in an upload processing functionality of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via sp...
CVE-2024-38510
A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via spec...
CVE-2024-38509
A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command.
CVE-2024-38508
A privilege escalation vulnerability was discovered in the web interface or SSH captive command shell interface of XCC that could allow an authenticated XCC user with elevated privileges to perform co...
CVE-2024-39304
ChurchCRM SQL Injection Vulnerability
CVE-2024-38872
SQL Injection
CVE-2024-38871
SQL Injection
CVE-2024-41813
txtdot SSRF vulnerability in /proxy
CVE-2024-41812
txtdot SSRF vulnerability in /get
CVE-2024-41807
Rejected reason: ** REJECT ** DO NOT USE THIS CVE RECORD. Consult IDs: CVE-2023-4759. Reason: This record is a reservation duplicate of CVE-2023-4759. Notes: All CVE users should reference CVE-2023-47...
CVE-2024-7050
Improper Authentication vulnerability in OpenText OpenText Directory Services may allow Multi-factor Authentication Bypass in particular scenarios.This issue affects OpenText Directory Services: 24.2.
CVE-2024-41805
Tracks vulnerable to reflected cross-site scripting
CVE-2024-41670
PayPal Official Module for PrestaShop has Improperly Implemented Security Check for Standard
GHSA-296q-rj83-g9rq
## usd-2024-0009 | Reflected XSS in Oveleon Cookiebar ### Details **Advisory ID**: usd-2024-0009 **Product**: Cookiebar **Affected Version**: 2.X **Vulnerability Type**: CWE-79: Improper Neutra...
composer/oveleon/contao-cookiebar>=2.0.0<2.1.3
composer/oveleon/contao-cookiebar<1.16.3
CVE-2024-6922
Server-Side Request Forgery in Automation 360
CVE-2024-41692
Incorrect Access Control Vulnerability
CVE-2024-41691
Insecure Storage of Sensitive Information Vulnerability
CVE-2024-41690
Default Credential Storage in Plaintext Vulnerability
CVE-2024-41689
Hard-coded Credentials Vulnerability
CVE-2024-41688
Cleartext Storage of Sensitive Information Vulnerability
CVE-2024-41687
Cleartext Transmission of Sensitive Information Vulnerability
CVE-2024-41686
Password Policy Bypass Vulnerability
CVE-2024-41685
Cookie Without HTTPOnly Flag Set Vulnerability
CVE-2024-41684
Cookie Without Secure Flag Set Vulnerability
CVE-2024-7062
Local Privilege Escalation in Nimble Commander <= v1.6.0, Build 4087
REDHAT-BUG-2300037
Several endpoints use the authHandler() and authHandlerWithUser() middleware functions. When the authentication provider is set to the default ("openShiftAuth"), no verification of authentication is a...
CVE-2024-7128
Openshift-console: unauthenticated data exposure
CVE-2023-38522
Apache Traffic Server: Incomplete field name check allows request smuggling
CVE-2024-35296
Apache Traffic Server: Invalid Accept-Encoding can force forwarding requests
CVE-2024-35161
Apache Traffic Server: Incomplete check for chunked trailer section allows request smuggling
GHSA-2hjr-vmf3-xwvp
An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. This could lead to raw contents of documents stored in Elasticsearch to be printed i...
maven/org.elasticsearch:elasticsearch>=8.0.0<8.11.2
maven/org.elasticsearch:elasticsearch<7.17.16
CVE-2024-40897
Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially crafted file with the affected ORC compiler, an arbitra...
CVE-2024-6490
Master Slider – Responsive Touch Slider <= 3.9.10 - CSRF to slider deletion
CVE-2023-49921
An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. This could lead to raw contents of documents stored in Elasticsearch to be printed i...
maven/org.elasticsearch:elasticsearch>=8.0.0<8.11.2
maven/org.elasticsearch:elasticsearch<7.17.16
CVE-2024-7120
Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_base_config.php os command injection
ZDI-CAN-23325
ZDI-24-965: Apple macOS VideoToolbox Out-Of-Bounds Write Remote Code Execution Vulnerability

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203