FortiManager TLS certificate validation failure
FortiManager does not properly validate TLS certificates when probing for devices to administer. This leads to potential pre-shared secret exposure.
View ArticleFortinet Connect admin able to gain root access
A webui administrator may create a new theme that performs arbitrary code execution on the system.
View Article14.703
Newly Added (2)Apache.Traffic.Server.HTTP2.Settings.Flood.DoSExim.string_vformat.Heap-based.Buffer.OverflowModified (1)Advantech.WebAccess.SCADA.Bwgetval.Arbitrary.File.Deletion ]]>
View Article14.705
Newly Added (2)Cisco.IOS.XE.REST.API.Authentication.BypassPulse.Secure.Platform.Stack-Based.Buffer.OverflowModified...
View Article14.709
Newly Added (7)HiSilicon.DVR.Devices.Remote.Code.ExecutionFG-VD-19-065_Adobe.0dayFG-VD-19-066_Adobe.0dayFG-VD-19-103_Cisco.0dayFG-VD-19-104_Cisco.0dayFG-VD-19-105_Cisco.0dayFG-VD-19-106_Cisco.0dayAttr...
View Article14.711
Newly Added (1)OpenEMR.C_Document.class.php.view_action.doc_id.XSSModified (1)MS.IE.Remove.Node.Memory.CorruptionAttr...
View Article14.713
Newly Added (1)cURL.and.libcurl.TFTP.blksize.Heap.Buffer.OverflowAttr (1)OP5.System.Remote.Code.Injection ]]>
View Article14.714
Newly Added (3)IBM.Operational.Decision.Manager.XXEPHP.serializing.COM.objects.DoSPHP.unserialize.COM.objects.DoSModified...
View Article14.716
Newly Added (2)Drupal.Module.SVGSanitizer.DoSYouPHPTube.checkConfiguration.php.Remote.Code.ExecutionModified (2)Adobe.Reader.CVE-2019-7786.Memory.CorruptionFG-VD-17-212_Microsoft.0dayAttr...
View Article14.719
Newly Added (2)Linux.Kernel.Netfilter.iptablesrestore.Stack.Buffer.OverflowExim.string_interpret_escape.Remote.Code.ExecutionModified (1)Obfuscated.Rich.Text.Format ]]>
View Article