Krzysztof Kotowicz

**Nome do software vulnerável e versões afetadas** Versões do Safari anteriores à 13.0.3 Versões do iTunes anteriores à 12.10.2 para Windows Versões do iCloud para Windows anteriores à 10.9.2 Versões do tvOS anteriores à 13.2 Versões do iOS anteriores à 13.2 Versões do iPadOS anteriores à 13.2 Versões do iCloud para Windows anteriores à 7.15 **Descrição** O cabeçalho HTTP referrer pode ser usado para vazar o histórico de navegação ao visitar um site criado com intenção maliciosa, revelando potencialmente os sites que um usuário visitou. **Recomendações** Para versões do Safari anteriores à 13.0.3, atualize para o Safari 13.0.3 ou posterior. Para versões do iTunes anteriores à 12.10.2 para Windows, atualize para o iTunes 12.10.2 para Windows ou posterior. Para versões do iCloud para Windows anteriores à 10.9.2, atualize para o iCloud para Windows 10.9.2 ou posterior. Para versões do tvOS anteriores à 13.2, atualize para o tvOS 13.2 ou posterior. Para versões do iOS anteriores à 13.2, atualize para o iOS 13.2 ou posterior. Para versões do iPadOS anteriores à 13.2, atualize para o iPadOS 13.2 ou posterior. Para versões do iCloud para Windows anteriores à 7.15, atualize para o iCloud para Windows 7.15 ou posterior.

**Nome do software vulnerável e versões afetadas** Versões do angular.js anteriores à 1.8.0 **Descrição** A vulnerabilidade permite a execução de scripts entre sites devido à substituição de HTML de entrada baseada em expressões regulares, que pode transformar código sanitizado em código não sanitizado. Isso pode ocorrer quando elementos `<option>` são envolvidos por elementos `<select>`, alterando o comportamento de análise e possivelmente levando a código não sanitizado. **Recomendações** Para versões anteriores à 1.8.0, atualize para a versão 1.8.0 ou posterior para resolver o problema. Como solução alternativa temporária, considere restringir o uso de elementos `<option>` dentro de elementos `<select>` para minimizar o risco de exploração.

**Nome do software vulnerável e versões afetadas: Versões do EasyXDM anteriores à 2.4.18 Descrição: A vulnerabilidade permite que invasores remotos injetem scripts da Web ou HTML arbitrários por meio do arquivo easyxdm.swf, o que constitui uma forma de Cross-site Scripting (XSS). Recomendações: Para versões anteriores à 2.4.18, atualize para a versão 2.4.18 ou posterior para resolver o problema.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 8.1 **Description** The issue concerns the QuickType feature in the Keyboards subsystem, which collects typing-prediction data from fields even when the autocomplete attribute is set to off. This behavior potentially allows attackers to discover credentials by reading credential values within unintended DOM input elements. **Recommendations** For Apple iOS versions prior to 8.1, update to version 8.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OpenText Exceed OnDemand (EoD) version 8 **Description** The issue allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted responses, due to the client supporting anonymous ciphers by default. **Recommendations** For OpenText Exceed OnDemand (EoD) version 8, consider disabling the support for anonymous ciphers to prevent man-in-the-middle attacks.

**Name of the Vulnerable Software and Affected Versions** OpenText Exceed OnDemand (EoD) version 8 **Description** The issue allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response. This triggers a downgrade to simple authentication, which sends credentials in plaintext. **Recommendations** For OpenText Exceed OnDemand (EoD) version 8, consider disabling the simple authentication mechanism to prevent the downgrade attack until a patch is available. Restrict access to sensitive information and use alternative secure authentication methods if possible. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OpenSSL versions prior to 1.0.1i OpenSSL through 1.0.1i PAN-OS versions 6.1.1 and earlier PAN-OS versions 6.0.7 and earlier PAN-OS versions 5.1.x and 5.0.x EOS versions 4.12.0 through 4.12.7.1 EOS versions 4.13.0 through 4.13.6 Apple mac os x (affected versions not specified) Debian debian linux (affected versions not specified) Fedoraproject fedora (affected versions not specified) IBM aix (affected versions not specified) IBM vios (affected versions not specified) Mageia (affected versions not specified) Netbsd (affected versions not specified) Novell suse linux enterprise desktop (affected versions not specified) Novell suse linux enterprise server (affected versions not specified) Novell suse linux enterprise software development kit (affected versions not specified) OpenSUSE (affected versions not specified) Oracle database (affected versions not specified) Redhat enterprise linux (affected versions not specified) Redhat enterprise linux desktop (affected versions not specified) Redhat enterprise linux desktop supplementary (affected versions not specified) Redhat enterprise linux server (affected versions not specified) Redhat enterprise linux server supplementary (affected versions not specified) Redhat enterprise linux workstation (affected versions not specified) Redhat enterprise linux workstation supplementary (affected versions not specified) Check Point GAiA (affected versions not specified) HPE iLO (affected versions not specified) Huawei products (affected versions not specified) Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 **Description** The SSL protocol 3.0 uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, also known as the "POODLE" issue. This allows an attacker to decrypt some encrypted contents under certain conditions. The conditions of successful exploitation are somewhat similar to the BEAST attack, which requires several conditions to be met for successful exploitation, including a man-in-the-middle position in the network and the ability to direct the victim client to send many repeated requests to the vulnerable server on behalf of the attacker. Due to the conditions required of a successful attack scenario, the risk of exploitation is not particularly high. **Recommendations** For OpenSSL versions prior to 1.0.1i, update to a version newer than 1.0.1i to mitigate the risk. For PAN-OS versions 6.1.1 and earlier, update to a version newer than 6.1.1 to mitigate the risk. For PAN-OS versions 6.0.7 and earlier, update to a version newer than 6.0.7 to mitigate the risk. For PAN-OS versions 5.1.x and 5.0.x, update to a version newer than 5.1.x and 5.0.x to mitigate the risk. For EOS versions 4.12.0 through 4.12.7.1, update to a version newer than 4.12.7.1 to mitigate the risk. For EOS versions 4.13.0 through 4.13.6, update to a version newer than 4.13.6 to mitigate the risk. For other affected products, update to a version that includes a fix for the POODLE issue. As a temporary workaround, consider disabling the use of SSLv3 protocol until a patch is available. Restrict access to the vulnerable server to minimize the risk of exploitation. Avoid using the SSLv3 protocol in the affected API endpoints until the issue is resolved.