Research Advisory
Tuesday, February 16, 2021
JSDom improperly allows the loading of local resources. Modern browser best practices dictate that the loading of local resources should be disallowed by default. From documentation, JSDom does not, by...
Research Advisory
Tuesday, February 16, 2021
(1) Exposure of Sensitive Information to an Unauthorized Actor CVSSv3 Vector: (AV:N/AC:L/PR:N/UI:N/S:U/C:L/ I:N/A:N) Syslog events are displayed unauthenticated on the device. The below screenshot shows what an unauthenticated user would...
Research Advisory
Tuesday, December 15, 2020
The CarbonBlack installer package for macOS (CbDefense Install_3.4.3.44 and prior) has been discovered to contain multiple security-related issues. The installer utilizes insecure directories during the installation process. The two directories...
Research Advisory
Friday, December 4, 2020
Druva inSync Privilege Escalation via Installer In the installation package for macOS provided by Druva (install inSync.pkg), the "postinstall" script included in the installer allows for privilege escalation from a...
Research Advisory
Thursday, December 3, 2020
Backdoor Account Hardcoded into the applications is an administrative backdoor that could allow an attacker to manipulate information with administrative controls that they normal would not have access to. For...
Research Advisory
Monday, November 23, 2020
Multiple internet record lookup tools were found to be vulnerable to cross-site scripting attacks via malicious DNS or WHOIS records. By inserting malicious javascript into a DNS TXT record or...
Research Advisory
Tuesday, September 22, 2020
CVE-2020-5781 - Cross-site scripting and Denial of Service CVSSv2 Base Score: 5.5 CVSSv2 Vector: (AV:N/AC:L/Au:S/C:N/I :P/A:P ) It was noted during testing that when a user logs in the langSelection...
Research Advisory
Monday, September 14, 2020
CVE-2020-4711 The flaw exists in /opt/ECX/tools/scripts/restore_wrapper.sh, where a directory path check can be bypassed via path traversal (i.e.,/tmp/../any/dir/in/the/file/system): ... if [ ${mode} == "initialize" ]; then if [ $# -ne...
Research Advisory
Wednesday, September 2, 2020
CVE-2020-5778: Message 8 Unauthenticated Remote DoS. A flaw exists in ttmd.exe due to improper validation of user-supplied data when processing a type 8 message sent to default TCP RequestPort 10200...
Research Advisory
Friday, June 19, 2020
When utilizing shared folder functionality via vmware-tools on macOS guests, the HGFS implementation does not use adequate bounds checking when replacing illegal characters in a filename. When sharing files with...