Latest Novell Vulnerabilities

CVE-2021-25252
Trendmicro Apex Central=2019
Microsoft Windows
Trend Micro Trend Micro Apex One and Worry-Free Business Security=2019
=5.0
Trend Micro Trend Micro Apex One and Worry-Free Business Security
Apple macOS
and 23 more
CVE-2020-8118
An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application.
Nextcloud Nextcloud Server<15.0.9
Nextcloud Nextcloud Server>=16.0.0<16.0.2
openSUSE Backports SLE=15.0-sp1
Novell Suse Linux Enterprise Server=12.0
CVE-2012-6344
Novell ZENworks Configuration Management before 11.2.4 allows XSS.
Novell ZENworks Configuration Management<11.2.4
CVE-2013-4357
The eglibc package before 2.14 incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service.
Eglibc Eglibc<2.14
Novell Suse Linux Enterprise Server=11.0-sp2
Debian Debian Linux=6.0
Debian Debian Linux=7.0
Canonical Ubuntu Linux=10.04
Canonical Ubuntu Linux=12.04
and 4 more
CVE-2013-2016
A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device. If the virtio device has zero/small sized config space, such...
debian/qemu
QEMU qemu>=1.3.0<=1.4.2
QEMU qemu=1.5.0-rc1
Debian Debian Linux=8.0
Debian Debian Linux=9.0
Debian Debian Linux=10.0
and 2 more
CVE-2019-13730
Type confusion in JavaScript in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
redhat/chromium-browser<79.0.3945.79
Google Chrome<79.0.3945.79
Debian Debian Linux=9.0
Debian Debian Linux=10.0
Fedoraproject Fedora=30
Fedoraproject Fedora=31
and 7 more
CVE-2019-9811
As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vu...
Mozilla Firefox<68
Mozilla Firefox ESR<60.8
Mozilla Thunderbird<60.8
Mozilla Firefox<68.0
Mozilla Firefox ESR<60.8
Mozilla Thunderbird<60.8
and 4 more
CVE-2019-11717
A vulnerability exists where the caret ("^") character is improperly escaped constructing some URIs due to it being used as a separator, allowing for possible spoofing of origin attributes.
Mozilla Firefox<68
<68
<60.8
<60.8
Mozilla Firefox<68.0
Mozilla Firefox ESR<60.8.0
and 6 more
CVE-2019-11338
libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array acces...
ubuntu/ffmpeg<7:3.4.6-0ubuntu0.18.04.1
ubuntu/ffmpeg<7:4.1.3-0ubuntu1
ubuntu/ffmpeg<7:2.8.17-0ubuntu0.1
debian/ffmpeg
FFmpeg FFmpeg=3.4
FFmpeg FFmpeg=4.1.2
and 8 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203