Security Vulnerabilities - CVEs Published In May 2023
Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames.
CVSS Score
7.5
EPSS Score
0.014
Published
2023-05-29
FS S3900-24T4S devices allow authenticated attackers with guest access to escalate their privileges and reset the admin password.
CVSS Score
8.8
EPSS Score
0.02
Published
2023-05-29
pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-05-29
Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via nodeRequire('child_process').
CVSS Score
8.8
EPSS Score
0.012
Published
2023-05-29
Gin 0.7.4 allows execution of arbitrary code when a crafted file is opened, e.g., via require('child_process').
CVSS Score
7.8
EPSS Score
0.003
Published
2023-05-28
An issue was discovered in Qt before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. Qt Network incorrectly parses the strict-transport-security (HSTS) header, allowing unencrypted connections to be established, even when explicitly prohibited by the server. This happens if the case used for this header does not exactly match.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-05-28
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-28
A vulnerability was found in ITRS Group monitor-ninja up to 2021.11.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file modules/reports/models/scheduled_reports.php. The manipulation leads to sql injection. Upgrading to version 2021.11.30 is able to address this issue. The name of the patch is 6da9080faec9bca1ca5342386c0421dca0a6c0cc. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230084.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-05-28
In ebankIT 6, the public endpoints /public/token/Email/generate and /public/token/SMS/generate allow generation of OTP messages to any e-mail address or phone number without validation. (It cannot be exploited with e-mail addresses or phone numbers that are registered in the application.)
CVSS Score
7.4
EPSS Score
0.001
Published
2023-05-28
Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Download PluginĀ <= 2.0.4 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-05-28