Cellebrite UFED versions 5.0 through 7.29 use four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction.
135405ff4806330d49060bed8cf3402ff174759f5f4ee2d7d009d9ee3f479b76
Ubuntu Security Notice 4328-1 - It was discovered that Message ID calculation was based on uninitialized data. An attacker could potentially exploit this to obtain sensitive information. Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code. Various other issues were also addressed.
f88fa78052414e963031d9b8353b20e056a0314a78805983ab7a4b73b4fa4c5c
MOVEit Transfer version 11.1.1 suffers from a remote SQL injection vulnerability.
215af4e07b4f1b0e8a564e8ed44b7b1355fc95c85e4b2fd47dbc4dd49dac39bb
Edimax Technology EW-7438RPn-v3 Mini version 1.27 suffers from a remote code execution vulnerability.
a7b3bfe170399993d098377d06aacc8404570738458254729c765989042ee70f
TVT NVMS 1000 suffers from a directory traversal vulnerability.
2923a9669c7e61abeb52bfe3a242caed49ec5d9e3c54eb57d7fc565fcc5534ec
WSO2 API Manager Carbon interface version 3.0.0 suffers from a persistent cross site scripting vulnerability.
aa7fe84a39710ecdeda7d8dfb55d243843508a741f578add287e13b050422879
Red Hat Security Advisory 2020-1428-01 - Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 20.0.0.4 serves as a replacement for Open Liberty 20.0.0.3 and includes security fixes, bug fixes, and enhancements.
6b5763555c8cdd2aba599aac4c65dbb22c8960d1b64b095c63d4984809807125
Red Hat Security Advisory 2020-1429-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.7.0 ESR. Issues addressed include an out of bounds write vulnerability.
16026fa208024a43685d42335f19e6aae1c1bb078adf105a5e88c607a3349ccc
B64dec version 1.1.2 SEH buffer overflow exploit with egg hunter.
7955d2375744edf7165275ecd2c528841178f0aafb106101b7cddf1e97ece0c0
WordPress Media Library Assistant plugin version 2.81 suffers from a local file inclusion vulnerability.
635cc70ebb74ad6e562d7979b7e15e3290d1009789ac02bb3abfb9943b4d1e6b
WSO2 API Manager Carbon interface version 3.0.0 suffers from an arbitrary file deletion vulnerability.
2b9b810bcab9926a9fe770d2842a2bf6de7fa510bc894f74a4a32d52be1fe93d
Huawei HG630 2 Router suffers from an authentication bypass vulnerability.
5116c765f399f1ea10d41bb253e734313f0191f75f3cd2468e28f6608140f954
Webtateas version 2.0 suffers from an arbitrary file read vulnerability.
ae7107b0b4c741002ed550d8be0ae94499e6e74062a734b7a9422c986e82c018