Contents x
Security Advisories
5 Articles  in this category
  • Print
  • Share
  • Dark
    Light
Contents

Security Advisories

5 Articles in this category
  • Share
  • Dark
    Light

Samba Vulnerability CVE-2021-44142

Vulnerability Description CVE-2021-44142 is a privilege escalation vulnerability that allows remote attackers to execute arbitrary code on affected installations of Samba. Access as a user that has write access to a file's e...
Updated on : 12 Apr 2022

Security Vulnerability CVE-2021-4034 (Polkit (Pwnkit))

Vulnerability Description A memory corruption vulnerability has been found in polkit’s pkexec, a SUID-root program that is installed by default on every major Linux distribution. This easily exploited vulnerability allows an...
Updated on : 12 Apr 2022

Security Vulnerability CVE-2021-44228 (Log4Shell)

The information in this article is correct as of December 16th 2021. Apache Log4j2 2.0-beta9 through 2.12.1 and 2.13.0 through 2.15.0 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled L...
Updated on : 12 Apr 2022

Security Vulnerability CVE-2022-0847 (Dirty Pipe ) and CVE-2022-0001 (Spectre-BHI )

Vulnerability Description The Dirty Pipe vulnerability in the Linux kernel has been around since version 5.8 and is tracked as CVE-2022-0847. This flaw discovered by Max Kellermann, abuses how the Kernel manages pages in pip...
Updated on : 12 Apr 2022

Security Vulnerability CVE-2022-22965 and CVE-2022-22963 (Spring4Shell Zero-Day Vulnerability)

Vulnerability Description A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WA...
Updated on : 12 Apr 2022
Copyright © CTERA Networks Ltd. All Rights Reserved