-
Nov 1, 2024 | 
packetstormsecurity.com | Seth Jenkins
This archive contains all of the 128 exploits added to Packet Storm in October, 2024.
-
Nov 1, 2024 | 
packetstormsecurity.com | Seth Jenkins
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5801-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 31, 2024 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : firefox-esr CVE ID : CVE-2024-10458 CVE-2024-10459 CVE-2024-10460 CVE-2024-10461 CVE-2024-10462 CVE-2024-10463 CVE-2024-10464...
-
Nov 1, 2024 | 
packetstormsecurity.com | Seth Jenkins
# Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection (SQLi)# Date: 01-10-2024# Exploit Author: Alter Prime# Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com# Version: Build v1.1.0# Tested on: Kali LinuxAn unauthenticated user can inject SQL queries through a POST request to the vulnerable script https://smarts-srlcom.com/privateArea/common/tests/interface.php.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
==========================================================================Ubuntu Security Notice USN-7085-2October 30, 2024xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS- Ubuntu 16.04 LTSSummary:X.Org X Server could be made to crash or run programs if it receivedspecially crafted data.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
# CVE-2024-48360 | Qualitor <= v8.24 Unauthenticated SSRF## DescriptionQualitor is a platform for business process management, and this system is present in various companies in Brazil that can be identified simply by using Google dorking. Our team identified a vulnerability in the application susceptible to SSRF, which allows enumerate internal systems/ports.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8676.jsonRed Hat officially shut down their mailing list notifications October 10, 2023. Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
==========================================================================Ubuntu Security Notice USN-7076-2October 31, 2024linux-azure-fde-5.15 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:Several security issues were fixed in the Linux kernel.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
==========================================================================Ubuntu Security Notice USN-7087-1October 31, 2024libarchive vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.10- Ubuntu 24.04 LTS- Ubuntu 22.04 LTS- Ubuntu 20.04 LTSSummary:libarchive could be made to crash or run programs as your login if itopened a specially crafted file.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
==========================================================================Ubuntu Security Notice USN-7084-2October 30, 2024python-pip vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.10- Ubuntu 24.04 LTS- Ubuntu 22.04 LTS- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS- Ubuntu 16.04 LTSSummary:urllib3 could leak sensitive information.
-
Oct 31, 2024 | 
packetstormsecurity.com | Seth Jenkins
The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8337.jsonRed Hat officially shut down their mailing list notifications October 10, 2023. Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.
