orikahmadov.com

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability

Vendor: Synacor

Product: Zimbra Collaboration Suite (ZCS)

Added: 2025-05-19

Due Date: 2025-06-09

Description:

Zimbra Collaboration contains a cross-site scripting (XSS) vulnerability in the CalendarInvite feature of the Zimbra webmail classic user interface. An attacker can exploit this vulnerability via an email message containing a crafted calendar header, leading to the execution of arbitrary JavaScript code.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-79

Srimax Output Messenger Directory Traversal Vulnerability

Vendor: Srimax

Product: Output Messenger

Added: 2025-05-19

Due Date: 2025-06-09

Description:

Srimax Output Messenger contains a directory traversal vulnerability that allows an attacker to access sensitive files outside the intended directory, potentially leading to configuration leakage or arbitrary file access.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-22

MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability

Vendor: MDaemon

Product: Email Server

Added: 2025-05-19

Due Date: 2025-06-09

Description:

MDaemon Email Server contains a cross-site scripting (XSS) vulnerability that allows a remote attacker to load arbitrary JavaScript code via an HTML e-mail message.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-79

Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

Vendor: Ivanti

Product: Endpoint Manager Mobile (EPMM)

Added: 2025-05-19

Due Date: 2025-06-09

Description:

Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability in the API component that allows an authenticated attacker to remotely execute arbitrary code via crafted API requests. This vulnerability results from an insecure implementation of the Hibernate Validator open-source library, as represented by CVE-2025-35036.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-94

Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability

Vendor: Ivanti

Product: Endpoint Manager Mobile (EPMM)

Added: 2025-05-19

Due Date: 2025-06-09

Description:

Ivanti Endpoint Manager Mobile (EPMM) contains an authentication bypass vulnerability in the API component that allows an attacker to access protected resources without proper credentials via crafted API requests. This vulnerability results from an insecure implementation of the Spring Framework open-source library.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-288

SAP NetWeaver Deserialization Vulnerability

Vendor: SAP

Product: NetWeaver

Added: 2025-05-15

Due Date: 2025-06-05

Description:

SAP NetWeaver Visual Composer Metadata Uploader contains a deserialization vulnerability that allows a privileged attacker to compromise the confidentiality, integrity, and availability of the host system by deserializing untrusted or malicious content.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-502

DrayTek Vigor Routers OS Command Injection Vulnerability

Vendor: DrayTek

Product: Vigor Routers

Added: 2025-05-15

Due Date: 2025-06-05

Description:

DrayTek Vigor2960, Vigor300B, and Vigor3900 routers contain an OS command injection vulnerability due to an unknown function of the file /cgi-bin/mainfunction.cgi/apmcfgupload of the component web management interface.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-78

Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability

Vendor: Fortinet

Product: Multiple Products

Added: 2025-05-14

Due Date: 2025-06-04

Description:

Fortinet FortiFone, FortiVoice, FortiNDR and FortiMail contain a stack-based overflow vulnerability that may allow a remote unauthenticated attacker to execute arbitrary code or commands via crafted HTTP requests.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-124

Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability

Vendor: Microsoft

Product: Windows

Added: 2025-05-13

Due Date: 2025-06-03

Description:

Microsoft Windows Ancillary Function Driver for WinSock contains a use-after-free vulnerability that allows an authorized attacker to escalate privileges to administrator.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-416

Microsoft Windows Scripting Engine Type Confusion Vulnerability

Vendor: Microsoft

Product: Windows

Added: 2025-05-13

Due Date: 2025-06-03

Description:

Microsoft Windows Scripting Engine contains a type confusion vulnerability that allows an unauthorized attacker to execute code over a network via a specially crafted URL.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-843

Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability

Vendor: Microsoft

Product: Windows

Added: 2025-05-13

Due Date: 2025-06-03

Description:

Microsoft Windows Common Log File System (CLFS) Driver contains a heap-based buffer overflow vulnerability that allows an authorized attacker to elevate privileges locally.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-122

Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability

Vendor: Microsoft

Product: Windows

Added: 2025-05-13

Due Date: 2025-06-03

Description:

Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-416

Microsoft Windows DWM Core Library Use-After-Free Vulnerability

Vendor: Microsoft

Product: Windows

Added: 2025-05-13

Due Date: 2025-06-03

Description:

Microsoft Windows DWM Core Library contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-416

TeleMessage TM SGNL Hidden Functionality Vulnerability

Vendor: TeleMessage

Product: TM SGNL

Added: 2025-05-12

Due Date: 2025-06-02

Description:

TeleMessage TM SGNL contains a hidden functionality vulnerability in which the archiving backend holds cleartext copies of messages from TM SGNL application users.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-912

GeoVision Devices OS Command Injection Vulnerability

Vendor: GeoVision

Product: Multiple Devices

Added: 2025-05-07

Due Date: 2025-05-28

Description:

Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Required Action:

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CWEs:

CWE-78

CISA Known Exploited Vulnerabilities

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability

Srimax Output Messenger Directory Traversal Vulnerability

MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability

Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability

SAP NetWeaver Deserialization Vulnerability

DrayTek Vigor Routers OS Command Injection Vulnerability

Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability

Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability

Microsoft Windows Scripting Engine Type Confusion Vulnerability

Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability

Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability

Microsoft Windows DWM Core Library Use-After-Free Vulnerability

TeleMessage TM SGNL Hidden Functionality Vulnerability

GeoVision Devices OS Command Injection Vulnerability