Aftersnow

Name of the Vulnerable Software and Affected Versions: Apache HertzBeat versions through 1.7.2 Description: This issue involves an improper neutralization of special elements used in an LDAP query, specifically an LDAP injection flaw, in Apache HertzBeat. An attacker requires an authenticated account with access to trigger the issue by crafting custom commands. A successful attack could lead to arbitrary script execution. Recommendations: Upgrade to version 1.7.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** langflow versions <=1.0.18 **Description** The issue allows for Remote Code Execution (RCE) because any component that provides code functionality runs on the local machine rather than in a sandbox. **Recommendations** For versions <=1.0.18, update to a version above 1.0.18 to resolve the issue. As a temporary workaround, consider restricting the use of components that provide code functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** chainer version 7.8.1.post1 **Description** A Deserialization of Untrusted Data issue allows for the execution of arbitrary code. **Recommendations** For version 7.8.1.post1, update to a version that fixes the Deserialization of Untrusted Data issue to prevent arbitrary code execution.

**Name of the Vulnerable Software and Affected Versions** PyTorch versions prior to 2.4.1 **Description** The issue concerns the RemoteModule in PyTorch, which is reported to have Deserialization RCE. However, it is noted that this behavior is intended in PyTorch distributed computing and is disputed by multiple parties. **Recommendations** For versions prior to 2.4.1, consider restricting the use of the RemoteModule to minimize the risk of exploitation until a clearer resolution or guidance is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Oracle WebLogic Server versions 12.2.1.4.0 through 12.2.1.4.0 Oracle WebLogic Server versions 14.1.1.0.0 through 14.1.1.0.0 **Description** The issue is related to insufficient input validation in the Core component of Oracle WebLogic Server. This can be exploited by a remote attacker to cause a denial of service using T3/IIOP protocols. Successful attacks can result in the ability to cause a hang or frequently repeatable crash of Oracle WebLogic Server. **Recommendations** For Oracle WebLogic Server version 12.2.1.4.0, update to a version that includes the fix for this issue. For Oracle WebLogic Server version 14.1.1.0.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the T3 and IIOP protocols to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: composiohq composio versions up to 0.5.8 Description: A vulnerability was found in composiohq composio, classified as problematic. The issue affects the function path of the file composioserverapi.py. The manipulation of the `file` argument leads to path traversal. The vendor was contacted about this disclosure but did not respond. Elevated activities targeting this issue have been observed. Recommendations: For versions up to 0.5.8, as a temporary workaround, consider restricting access to the vulnerable function path in the composioserverapi.py file until a patch is available. Avoid using the `file` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: h2oai h2o-3 version 3.46.0.4 Description: A critical issue has been found in the getConnectionSafe function of the component JDBC Connection Handler, affecting the file /dtale/chart-data/1. The manipulation of the `query` argument leads to deserialization. This issue can be initiated remotely. The vendor was contacted about this disclosure but did not respond. Recommendations: For h2oai h2o-3 version 3.46.0.4, as a temporary workaround, consider disabling the `getConnectionSafe` function until a patch is available. Restrict access to the `/dtale/chart-data/1` endpoint to minimize the risk of exploitation. Avoid using the `query` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: aimhubio aim versions up to 3.24 Description: A problematic issue was found in the `dangerouslySetInnerHTML` function of the `textbox.tsx` file in the Text Explorer component. The manipulation of the `query` argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For aimhubio aim versions up to 3.24, as a temporary workaround, consider disabling the `dangerouslySetInnerHTML` function until a patch is available. Restrict access to the `textbox.tsx` file to minimize the risk of exploitation. Avoid using the `query` argument in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: composiohq composio versions up to 0.5.6 Description: A critical vulnerability has been found in composiohq composio, affecting the `Calculator` function of the file `python/composio/tools/local/mathematical/actions/calculator.py`. This issue leads to code injection. The exploit has been disclosed to the public and may be used. There have been reports of offensive activities targeting this vulnerability. The vendor was contacted about this disclosure but did not respond. Recommendations: For versions up to 0.5.6, patch immediately and review logs for signs of exploit. As a temporary workaround, consider disabling the `Calculator` function until a patch is available. Restrict access to the `python/composio/tools/local/mathematical/actions/calculator.py` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** zmops ArgusDBM version 0.1.0 **Description** A critical issue was found in the getDefaultClassLoader function of the CalculateAlarm.java file, part of the AviatorScript Handler component. This issue leads to deserialization and can be exploited remotely. The exploit has been disclosed publicly. **Recommendations** For version 0.1.0, consider disabling the getDefaultClassLoader function of the CalculateAlarm.java file as a temporary workaround until a patch is available. Restrict access to the AviatorScript Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** WuKongOpenSource Wukong nocode up to 20230807 **Description** A critical issue was found in the AviatorScript Handler component, specifically in the ExpressionUtil.java file, allowing for deserialization through unknown functionality manipulation. This can be exploited remotely. The issue has been publicly disclosed and may be used for attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ORIPA versions up to 1.72 **Description** A critical issue was found in ORIPA, affecting an unknown functionality of the file src/main/java/oripa/persistence/doc/loader/LoaderXML.java. The manipulation of this issue leads to deserialization and can be launched remotely. **Recommendations** For versions up to 1.72, upgrade to version 1.80 to address this issue. It is recommended to upgrade the affected component.