Posts

GraniteDS Multiple Remote Code Execution Vulnerabilities

Atlassian JIRA CVE-2017-5983 Remote Code Execution Vulnerability

Apache Flex BlazeDS CVE-2017-5641 Remote Code Execution Vulnerability

WebORB for Java Remote Code Execution and XML External Entity Injection Vulnerabilities

Mongoose OS CVE-2017-7185 Use After Free Denial of Service Vulnerability

macOS/iOS Kernel 10.12.3 (16D32) - 'bpf' Heap Overflow

Google Nexus Broadcom Wi-Fi Driver CVE-2017-0585 Information Disclosure Vulnerability

IBM Lotus Protector for Mail Encryption Local File Include Vulnerability

Apple Webkit - 'JSCallbackData' Universal Cross-Site Scripting

macOS Kernel 10.12.2 (16C67) - Memory Disclosure Due to Lack of Bounds Checking in AppleIntelCapriController::getDisplayPipeCapability

Apple WebKit 10.0.2(12602.3.12.0.1) - 'Frame::setDocument (1)' Universal Cross-Site Scripting

macOS/iOS Kernel 10.12.3 (16D32) - SIOCGIFORDER Socket ioctl Off-by-One Memory Corruption

macOS/iOS Kernel 10.12.3 (16D32) - SIOCSIFORDER Socket ioctl Memory Corruption Due to Bad Bounds Checking

macOS/iOS Kernel 10.12.3 (16D32) - Bad Locking in necp_open Use-After-Free

Multiple IBM Products CVE-2016-8987 Access Bypass Vulnerability

Maian Greetings 2.1 - 'cat' Parameter SQL Injection

Maian Uploader 4.0 - 'user' Parameter SQL Injection

macOS Kernel 10.12.3 (16D32) - Use-After-Free Due to Double-Release in posix_spawn

Linux Kernel CVE-2017-6214 Remote Denial of Service Vulnerability

Maian Survey 1.1 - 'survey' Parameter SQL Injection

Linux Kernel CVE-2017-2636 Local Privilege Escalation Vulnerability

Bluecoat ASG 6.6/CAS 1.3 - OS Command Injection (Metasploit)

Google Android Broadcom Wi-Fi Driver Multiple Privilege Escalation Vulnerabilities

Google Android Qualcomm components Multiple Unspecified Security Vulnerabilities

Apple iOS CVE-2017-6975 Arbitray Code Execution Vulnerability

libarchive CVE-2016-10209 Denial Of Service Vulnerability