Vulnerability Updates

National Cyber Awareness System's Weekly Bulletins For The Month

RSS CERT Vulnerability Notes

  • VU#730261: Marvell Avastar wireless SoCs have multiple vulnerabilities 2019-04-19
    A presentation at the ZeroNights 2018 conference describes multiple security issues with Marvell Avastar SoCs(models 88W8787,88W8797,88W8801,88W8897,and 88W8997). The presentation provides some detail about a block pool memory overflow. During Wi-Fi network scans,an overflow condition can be triggered,overwriting certain block pool data structures. Because many devices conduct automatic background network scans,this vulnerability could be exploited regardless […]
  • VU#166939: Broadcom WiFi chipset drivers contain multiple vulnerabilities 2019-04-19
    Vulnerabilities in the open source brcmfmac driver: CVE-2019-9503:If the brcmfmac driver receives a firmware event frame from a remote source,the is_wlc_event_frame function will cause this frame to be discarded and not be processed. If the driver receives the firmware event frame from the host,the appropriate handler is called. This frame validation can be bypassed if […]
  • VU#192371: VPN applications insecurely store session cookies 2019-04-18
    Virtual Private Networks(VPNs)are used to create a secure connection with another network over the internet. Multiple VPN applications store the authentication and/or session cookies insecurely in memory and/or log files. CWE-311:Missing Encryption of Sensitive Data The following products and versions store the cookie insecurely in log files: - CVE-2019-1573:Palo Alto Networks GlobalProtect Agent 4.1.0 for […]
  • VU#871675: WPA3 design issues and implementation vulnerabilities in hostapd and wpa_supplicant 2019-04-16
    CERT continues to review the WPA3 protocol in support of this body of research. The root cause of the numerous"implementation"vulnerabilities may involve modifying the protocol. WPA3 uses Simultaneous Authentication of Equals(SAE),also known as Dragonfly Key Exchange,as the initial key exchange protocol,replacing WPA2's Pre-Shared Key(PSK)protocol. hostapd is a daemon for access point and authentication servers used […]
  • VU#174715: MyCar Controls uses hard-coded credentials 2019-04-08
    MyCar is a small aftermarket telematics unit from AutoMobility Distribution Inc. MyCar add smartphone-controlled geolocation,remote start/stop and lock/unlock capabilities to a vehicle with a compatible remote start unit. The MyCar Controls mobile application contains hard-coded admin credentials(CWE-798)which can be used in place of a user's username and password to communicate with the server endpoint for […]

RSS National Vulnerability Database

  • CVE-2019-11358 2019-04-20
    jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
  • CVE-2019-11359 2019-04-20
    Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter.
  • CVE-2018-20817 2019-04-19
    SV_SteamAuthClient in various Activision Infinity Ward Call of Duty games before 2015-08-11 is missing a size check when reading authBlob data into a buffer, which allows one to execute code on the remote target machine when sending a steam authentication request. This affects Call of Duty: Modern Warfare 2, Call of Duty: Modern Warfare 3, […]
  • CVE-2019-11354 2019-04-19
    The client in Electronic Arts (EA) Origin 10.5.36 on Windows allows template injection in the title parameter of the Origin2 URI handler. This can be used to escape the underlying AngularJS sandbox and achieve remote code execution via an origin2://game/launch URL for QtApplication QDesktopServices communication.
  • CVE-2019-11351 2019-04-19
    TeamSpeak 3 Client before 3.2.5 allows remote code execution in the Qt framework.

RSS SecurityFocus Vulnerabilities List

RSS Symantec Vulnerabilities List

RSS Packet Storm’s Apple Vulnerability List

  • Apple Security Advisory 2019-3-27-1 2019-03-28
    Apple Security Advisory 2019-3-27-1 - watchOS 5.2 is now available and addresses buffer overflow and code execution vulnerabilities.
  • Apple Security Advisory 2019-3-25-6 2019-03-26
    Apple Security Advisory 2019-3-25-6 - iCloud for Windows 7.11 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
  • Apple Security Advisory 2019-3-25-1 2019-03-26
    Apple Security Advisory 2019-3-25-1 - iOS 12.2 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
  • Apple Security Advisory 2019-3-25-5 2019-03-26
    Apple Security Advisory 2019-3-25-5 - iTunes 12.9.4 for Windows is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.
  • Apple Security Advisory 2019-3-25-3 2019-03-26
    Apple Security Advisory 2019-3-25-3 - tvOS 12.2 is now available and addresses buffer overflow, code execution, and cross site scripting vulnerabilities.

RSS Packet Storm’s Windows Vulnerability List