Advisories archive

SSD Advisory – iOS/macOS Safari Sandbox Escape via QuartzCore Heap Overflow
Vulnerabilities Summary QuartzCore ( https://developer.apple.com/documentation/quartzcore ), also known as CoreAnimation, is a framework use by macOS and iOS to build
SSD Advisory – Symfony Framework forward() Remote Code Execution
Vulnerability Summary The following advisory describes a vulnerability found in Symfony 3.4 - a PHP framework that is used to
SSD Advisory – Chrome AppCache Subsystem SBX by utilizing a Use After Free
Vulnerabilities Summary The vulnerability exists in the AppCache subsystem in Chrome Versions 69.0 and before. This code is located in
SSD Advisory – Chrome Type Confusion in JSCreateObject Operation to RCE
Vulnerabilities Summary The following advisory discusses a vulnerability found in turbofan, the JIT compiler. We can trigger the JavaScript code
SSD Advisory – Firefox JavaScript Type Confusion RCE
Vulnerabilities Summary A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and
SSD Advisory – Firefox Information Leak
Vulnerabilities Summary A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer
SSD Advisory – Cisco Prime Infrastructure File Inclusion and Remote Command Execution to Privileges Escalation
Vulnerabilities Summary Cisco Prime Infrastructure (CPI) contains two vulnerabilities that when exploited allow an unauthenticated attacker to achieve root privileges
SSD Advisory – Android Printing Man in the Middle Attack
Vulnerabilities Summary Android 8.1 has introduced the new feature of a default printing service. This service, based on the very
SSD Advisory – IRDA Linux Driver UAF
Vulnerabilities Summary The following advisory describes two vulnerabilities in the Linux Kernel. By combining these two vulnerabilities a privilege escalation
SSD Advisory – ASUSTOR NAS Devices Authentication Bypass
Vulnerabilities Summary An ASUSTOR NAS or network attached storage is "a computer appliance built from the ground up for storing