Security Vulnerabilities - CVEs Published In December 2023
Umbraco is an ASP.NET content management system (CMS). Starting in version 8.0.0 and prior to versions 8.18.10, 10.7.0, and 12.1.0, a user with access to a specific part of the backoffice is able to inject HTML code into a form where it is not intended. Versions 8.18.10, 10.7.0, and 12.1.0 contain a patch for this issue.
CVSS Score
3.5
EPSS Score
0.005
Published
2023-12-12
The jruby-openssl gem before 0.6 for JRuby mishandles SSL certificate validation.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-12-12
The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded file.
CVSS Score
9.8
EPSS Score
0.006
Published
2023-12-12
An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. If the publisher criteria is selected, it defines the name of a publisher that must be present in the certificate (and also requires that the certificate is valid). If an Add Admin token is protected by this criteria, it can be leveraged by a malicious actor to achieve Elevation of Privileges from standard user to administrator.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-12-12
In BeyondTrust Privilege Management for Windows (aka PMfW) through 5.7, a SYSTEM installation causes Cryptbase.dll to be loaded from the user-writable location %WINDIR%\Temp.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-12-12
In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality.
CVSS Score
9.8
EPSS Score
0.157
Published
2023-12-12
In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality.
CVSS Score
7.5
EPSS Score
0.509
Published
2023-12-12
In GL.iNET GL-AR300M routers with firmware 3.216 it is possible to inject arbitrary shell commands through the OpenVPN client file upload functionality.
CVSS Score
9.8
EPSS Score
0.139
Published
2023-12-12
NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry().
CVSS Score
6.5
EPSS Score
0.001
Published
2023-12-12
Client side permission bypass in Devolutions Remote Desktop Manager 2023.3.4.0 and earlier on iOS allows an attacker that has access to the application to execute entries in a SQL data source without restriction.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-12-12