This update for libzypp-plugin-appdata fixes the following issues: - CVE-2023-22643: Fixed potential shell injection related to malicious repo names . - Added hardening to systemd service .
docker-registry: Docker toolset to pack, ship, store, and deliver content Docker Registry could be made to crash if it received specially crafted input.
The host is installed with Atlassian Confluence Server 8.0.0 before 8.3.2 and is prone to a remote code execution vulnerability. A flaw is present in the application which fails to properly handle issue in unspecified vectors. Successful exploitation allows an authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availab ...
The host is installed with Atlassian Confluence Server 8.0.0 before 8.3.2 and is prone to a remote code execution vulnerability. A flaw is present in the application which fails to properly handle issue in unspecified vectors. Successful exploitation allows an authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availab ...
The host is installed with Atlassian Bamboo CI server before 9.2.3 or 9.3.0 through 9.3.1 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in the unspecified vectors. Successful exploitation could allows an authenticated attacker to modify the actions taken by a system call.
The host is installed with Atlassian Confluence Server before 7.13.17, 7.14.0 before 7.19.9, or 7.20.0 before 8.2.2 and is prone to a broken access control vulnerability. A flaw is present in the application which fails to properly handle attatchments feature. Successful exploitation allows remote attackers who have read permissions to a page, but not write permissions, to upload attachments.
The host is installed with Atlassian Confluence Server before 7.13.15, 7.14.0 before 7.19.7, or 7.20.0 before 8.2.0 and is prone to an information disclosure vulnerability. A flaw is present in the application which fails to properly handle an issue in the macro preview feature. Successful exploitation allows remote attackers to view the names of attachments and labels in a private Confluence spac ...
The host is installed with Atlassian Confluence Server before 7.13.15, 7.14.0 before 7.19.7, or 7.20.0 before 8.2.0 and is prone to an information disclosure vulnerability. A flaw is present in the application which fails to properly handle an issue in the macro preview feature. Successful exploitation allows remote attackers to view the names of attachments and labels in a private Confluence spac ...
The host is missing a critical security update according to Adobe advisory, APSB23-09. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation could allow attackers to cause arbitrary code execution or memory leak.