Jakob Lell

**Name of the Vulnerable Software and Affected Versions** Simple Machines Forum (SMF) versions prior to 1.1.19 Simple Machines Forum (SMF) versions 2.x prior to 2.0.6 **Description** The issue allows remote attackers to conduct clickjacking attacks. This is possible due to the lack of an appropriate X-Frame-Options header, which enables an attacker to frame the vulnerable application, potentially leading to unintended actions by the user. **Recommendations** For versions prior to 1.1.19, update to version 1.1.19 or later. For versions 2.x prior to 2.0.6, update to version 2.0.6 or later.

**Name of the Vulnerable Software and Affected Versions** Simple Machines Forum (SMF) versions prior to 1.1.19 Simple Machines Forum (SMF) versions 2.x prior to 2.0.6 **Description** The issue allows remote attackers to impersonate arbitrary users by utilizing multiple space characters. **Recommendations** For Simple Machines Forum (SMF) versions prior to 1.1.19, update to version 1.1.19 or later. For Simple Machines Forum (SMF) versions 2.x prior to 2.0.6, update to version 2.0.6 or later.

**Name of the Vulnerable Software and Affected Versions** Simple Machines Forum (SMF) versions 2.0.6 and earlier, 1.1.19 and earlier **Description** The issue allows remote attackers to impersonate arbitrary users by utilizing a Unicode homoglyph character in a `username`. This can lead to unauthorized access and actions on behalf of the impersonated user. **Recommendations** For versions 2.0.6 and earlier, update to a version that includes the fix for this issue. For versions 1.1.19 and earlier, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting user registration to prevent the exploitation of this issue until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Belkin wireless routers Surf N150 Model F7D1301v1 Belkin wireless routers N900 Model F9K1104v1 Belkin wireless routers N450 Model F9K1105V2 Belkin wireless routers N300 Model F7D2301v1 **Description** The issue allows remote attackers to access the network by sniffing the beacon frames, due to a predictable default WPA2-PSK passphrase generated based on eight digits of the WAN MAC address. **Recommendations** For Belkin wireless routers Surf N150 Model F7D1301v1, change the default WPA2-PSK passphrase to a unique and strong password. For Belkin wireless routers N900 Model F9K1104v1, change the default WPA2-PSK passphrase to a unique and strong password. For Belkin wireless routers N450 Model F9K1105V2, change the default WPA2-PSK passphrase to a unique and strong password. For Belkin wireless routers N300 Model F7D2301v1, change the default WPA2-PSK passphrase to a unique and strong password.

**Name of the Vulnerable Software and Affected Versions** TP-Link 8840T router (affected versions not specified) **Description** The default configuration of the TP-Link 8840T router allows remote attackers to establish an HTTP connection via unknown vectors, which may have unspecified other impact. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** tar versions prior to 1.23 GNU cpio versions prior to 2.11 **Description** The issue is related to a heap-based buffer overflow in the `rmt read ` function in `lib/rtapelib.c` in the rmt client functionality. This can be exploited by remote rmt servers, allowing them to cause a denial of service or possibly execute arbitrary code by sending more data than was requested, particularly with archive filenames containing a colon character. The vulnerability can lead to a disruption of confidentiality, integrity, and availability of protected information and can be exploited remotely. **Recommendations** For tar versions prior to 1.23, update to version 1.23 or later to resolve the issue. For GNU cpio versions prior to 2.11, update to version 2.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the rmt client functionality until a patch is available. Avoid using archive filenames that contain a colon character in the affected API endpoint until the issue is resolved.