James Davis

**Nome do software vulnerável e versões afetadas** Windows Defender (versões afetadas não especificadas) **Descrição** O problema está relacionado à autorização inadequada de um índice contendo informações confidenciais provenientes de uma pesquisa de Arquivos Globais no Windows Defender, permitindo que um invasor autorizado divulgue informações através de uma rede. Isso se deve ao fato de o mecanismo de indexação não limitar adequadamente o acesso aos usuários autorizados a visualizar as informações originais. Não há conhecimento de explorações da vulnerabilidade, apesar da baixa complexidade do ataque. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Prestaul skeemas (affected versions not specified) **Description** A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument `uri` leads to inefficient regular expression complexity. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MongoDB bson JavaScript module versions 0.5.0 through 1.0.4 **Description** The issue is related to a Regular Expression Denial of Service (ReDoS) in the lib/bson/decimal128.js file. It occurs when the `Decimal128.fromString()` function is used to parse a long untrusted string. **Recommendations** For MongoDB bson JavaScript module versions 0.5.0 through 1.0.4, update to version 1.0.5 or later to resolve the issue. As a temporary workaround, consider restricting the input to the `Decimal128.fromString()` function to prevent parsing of long untrusted strings.

**Name of the Vulnerable Software and Affected Versions** Django versions 2.0 through 2.0.2 Django versions 1.11 through 1.11.10 Django versions 1.8 through 1.8.18 **Description** An issue was discovered in the django.utils.html.urlize() function, which was extremely slow to evaluate certain inputs due to catastrophic backtracking vulnerabilities in two regular expressions. The urlize() function is used to implement the urlize and urlizetrunc template filters, which were thus vulnerable. **Recommendations** For Django versions 2.0 through 2.0.2, update to version 2.0.3 or later. For Django versions 1.11 through 1.11.10, update to version 1.11.11 or later. For Django versions 1.8 through 1.8.18, update to version 1.8.19 or later.

**Name of the Vulnerable Software and Affected Versions** Django versions 2.0 before 2.0.3 Django versions 1.11 before 1.11.11 Django versions 1.8 before 1.8.19 **Description** The issue is related to a catastrophic backtracking vulnerability in a regular expression used by the `django.utils.text.Truncator` class, specifically in its `chars()` and `words()` methods when the `html=True` argument is passed. This vulnerability affects the `truncatechars html` and `truncatewords html` template filters. An attacker could exploit this by crafting a string that leads to a denial of service. **Recommendations** For Django versions 2.0 before 2.0.3, update to version 2.0.3 or later. For Django versions 1.11 before 1.11.11, update to version 1.11.11 or later. For Django versions 1.8 before 1.8.19, update to version 1.8.19 or later. As a temporary workaround, consider avoiding the use of the `html=True` argument in the `chars()` and `words()` methods of `django.utils.text.Truncator` until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Node.js versions 4.x **Description** The issue concerns a potential regular expression denial of service (ReDoS) vector in the `'path'` module. This module is used for various path parsing functions, including `path.dirname()`, `path.extname()`, and `path.parse()`. An attacker can craft a string that, when passed through one of these functions, could take a significant amount of time to evaluate, potentially leading to a full denial of service. **Recommendations** For Node.js versions 4.x, consider upgrading to Node.js 6.x or later, as the code in question was replaced in these versions, resolving the issue. As a temporary workaround, consider restricting the use of the `'path'` module or the specific functions `path.dirname()`, `path.extname()`, and `path.parse()` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** iThoughtsHD app version 4.19 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. It occurs when the WiFi Transfer feature is used, allowing remote attackers to inject arbitrary web script or HTML via a crafted map name. **Recommendations** For iThoughtsHD app version 4.19, consider disabling the WiFi Transfer feature until a patch is available to prevent exploitation of the XSS vulnerability.

**Name of the Vulnerable Software and Affected Versions** iThoughtsHD app version 4.19 **Description** The issue allows remote attackers to cause a denial of service by consuming disk space through uploading a large file. This is related to the iThoughts web server in the iThoughtsHD app on iPad devices. **Recommendations** For iThoughtsHD app version 4.19, consider restricting file upload sizes to prevent excessive disk consumption until a patch is available.

**Name of the Vulnerable Software and Affected Versions** iThoughtsHD app version 4.19 **Description** The issue allows remote attackers to upload arbitrary files by exploiting the WiFi Transfer feature. This is achieved by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file. **Recommendations** For iThoughtsHD app version 4.19, consider disabling the WiFi Transfer feature until a patch is available to prevent exploitation. Restrict access to file uploads to minimize the risk of arbitrary file uploads.