|
151
|
7.5
-
|
HIGH
Adjacent
|
VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/G…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2023-34058
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2025-03-7 01:15
2023-10-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
152
|
7.5
-
|
HIGH
Network
|
browserify-sign is a package to duplicate the functionality of node's crypto public key functions, much of this is based on Fedor Indutny's work on indutny/tls.js. An upper bound check issue in `dsaV…
|
-
|
CVE-2023-46234
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:28
2023-10-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
153
|
4.7
-
|
MEDIUM
Local
|
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zap…
|
CWE-416
Use After Free
|
CVE-2023-5380
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:41
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
154
|
7.8
-
|
HIGH
Local
|
A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty fu…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-5367
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:41
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
155
|
6.5
-
|
MEDIUM
Network
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-41983
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:22
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
156
|
8.8
-
|
HIGH
Network
|
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing we…
|
NVD-CWE-noinfo
|
CVE-2023-42852
|
cpe:2.3:o:debian:debian_linux:12.0:* cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2024-11-21 17:23
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
157
|
4.3
-
|
MEDIUM
Network
|
It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an insufficient activation-delay. This vulnerability affects Firefox < 119, Fir…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2023-5721
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
158
|
6.5
-
|
MEDIUM
Network
|
An attacker could have created a malicious link using bidirectional characters to spoof the location in the address bar when visited. This vulnerability affects Firefox < 117, Firefox ESR < 115.4, an…
|
NVD-CWE-noinfo
|
CVE-2023-5732
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
159
|
9.8
-
|
CRITICAL
Network
|
Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-5730
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
160
|
7.5
-
|
HIGH
Network
|
During garbage collection extra operations were performed on a object that should not be. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 119, Firefox ESR…
|
NVD-CWE-noinfo
|
CVE-2023-5728
|
cpe:2.3:o:debian:debian_linux:11.0:* cpe:2.3:o:debian:debian_linux:10.0:*
|
|
|
|
|
2024-11-21 17:42
2023-10-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|