amazon ion vulnerabilities and exploits

(subscribe to this query)

Amazon Ion is a Java implementation of the Ion data notation. Prior to version 1.10.5, a potential denial-of-service issue exists in `ion-java` for applications that use `ion-java` to deserialize Ion text encoded data, or deserialize Ion text or binary encoded data into the `IonV...

In ssh in OpenSSH prior to 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters ...

Openbsd Openssh Debian Debian Linux 10.0 Debian Debian Linux 11.0 Debian Debian Linux 12.0

14 Github repositories

A wrong lowering instruction in the ARM64 Ion compiler resulted in a wrong optimization result. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

sshd in OpenSSH 6.2 up to and including 8.x prior to 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run w...

Openbsd Openssh Fedoraproject Fedora 33 Fedoraproject Fedora 34 Fedoraproject Fedora 35 Netapp Ontap Select Deploy Administration Utility -Netapp Clustered Data Ontap -Netapp Solidfire -Netapp Hci Management Node -Netapp Active Iq Unified Manager -Netapp Aff A250 Firmware -Netapp Aff 500f Firmware -Oracle Http Server 12.2.1.2.0 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Zfs Storage Appliance Kit 8.8 Starwindsoftware Starwind Virtual San V8r13

5 Github repositories

Unexpected data returned from the Safe Browsing API could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird < 102.10 and Firefox ESR < 102.10.

Mozilla Thunderbird Mozilla Firefox Esr

A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code> calls. This could have led to user confusion a...

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox E...

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

Firefox did not properly handle downloads of files ending in <code>.desktop</code>, which can be interpreted to run attacker-controlled commands. <br>*This bug only affects Firefox for Linux on certain Distributions. Other operating systems are unaffected, and M...

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 112, Focus for An...

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, ...

Mozilla Thunderbird Mozilla Focus Mozilla Firefox Esr Mozilla Firefox

1 2 3 4 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook