OBS-Vigilance

Title	Description	Date
Netty: overload via HTTP/2 Made You Reset Attack	An attacker can trigger an overload of Netty, via HTTP/2 Made You Reset Attack, in order to trigger a denial of service...	Visit link for details
Chrome Edge Opera: multiple vulnerabilities dated 04/02/2025	An attacker can use several vulnerabilities of Chrome Edge Opera, dated 04/02/2025...	Visit link for details
Mozilla Firefox Thunderbird: multiple vulnerabilities dated 04/02/2025	An attacker can use several vulnerabilities of Mozilla Firefox Thunderbird, dated 04/02/2025...	Visit link for details
FFmpeg: buffer overflow via ff_aac_search_for_tns()	An attacker can trigger a buffer overflow of FFmpeg, via ff_aac_search_for_	Visit link for details
IBM MQ: information disclosure via Client Configuration Files Password	An attacker can bypass access restrictions to data of IBM MQ, via Client Configuration Files Password, in order to read sensitive information...	Visit link for details
shlex: code execution via Command Injection	An attacker can use a vulnerability of shlex, via Command Injection, in order to run code...	Visit link for details
Django: SQL injection via FilteredRelation Column Aliases	An attacker can use a SQL injection of Django, via FilteredRelation Column Aliases, in order to read or alter data...	Visit link for details
Google Android Pixel: multiple vulnerabilities of February 2025	An attacker can use several vulnerabilities of Google Android Pixel...	Visit link for details
Cisco IP Phone 7800/8800: read-write access via SIP Software	An attacker can bypass access restrictions of Cisco IP Phone 7800/8800, via SIP Software, in order to read or alter data...	Visit link for details
Cisco Unified Communications Manager: Cross Site Scripting via Management Interface	An attacker can trigger a Cross Site Scripting of Cisco Unified Communications Manager, via Management Interface, in order to run JavaScript code in the context of the web site...	Visit link for details