Ck01

**Name of the Vulnerable Software and Affected Versions** macOS Big Sur versions prior to 11.5 **Description** A malicious application may be able to gain root privileges due to this issue. The estimated number of potentially affected devices worldwide is not specified. This issue was addressed with improved checks. **Recommendations** For versions prior to 11.5, update to macOS Big Sur 11.5 to resolve the issue. As a temporary workaround, consider restricting access to sensitive resources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to Big Sur 11.4 iOS versions prior to 14.6 iPadOS versions prior to 14.6 watchOS versions prior to 7.5 **Description** A validation issue existed in the handling of symlinks, which has been addressed with improved validation. This could have allowed a malicious application to gain root privileges. **Recommendations** For macOS versions prior to Big Sur 11.4, update to macOS Big Sur 11.4 or later. For iOS versions prior to 14.6, update to iOS 14.6 or later. For iPadOS versions prior to 14.6, update to iPadOS 14.6 or later. For watchOS versions prior to 7.5, update to watchOS 7.5 or later.

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.2 Security Update versions prior to 2021-001 Catalina Security Update versions prior to 2021-001 Mojave Description: A logic issue was addressed with improved state management, which could allow a local attacker to elevate their privileges. Recommendations: For macOS versions prior to 11.2, update to macOS Big Sur 11.2. For Security Update versions prior to 2021-001 Catalina, apply Security Update 2021-001 Catalina. For Security Update versions prior to 2021-001 Mojave, apply Security Update 2021-001 Mojave.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.6 iPadOS versions prior to 13.6 macOS Catalina versions prior to 10.15.6 tvOS versions prior to 13.4.8 watchOS versions prior to 6.2.8 **Description** An issue existed within the path validation logic for symlinks, which was addressed with improved path sanitization. A local attacker may be able to elevate their privileges. **Recommendations** For iOS versions prior to 13.6, update to iOS 13.6 or later. For iPadOS versions prior to 13.6, update to iPadOS 13.6 or later. For macOS Catalina versions prior to 10.15.6, update to macOS Catalina 10.15.6 or later. For tvOS versions prior to 13.4.8, update to tvOS 13.4.8 or later. For watchOS versions prior to 6.2.8, update to watchOS 6.2.8 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.6 iPadOS versions prior to 13.6 macOS Catalina versions prior to 10.15.6 tvOS versions prior to 13.4.8 **Description** The issue existed within the path validation logic for symlinks, which was addressed with improved path sanitization. A local attacker may be able to elevate their privileges. **Recommendations** For iOS versions prior to 13.6, update to iOS 13.6 or later. For iPadOS versions prior to 13.6, update to iPadOS 13.6 or later. For macOS Catalina versions prior to 10.15.6, update to macOS Catalina 10.15.6 or later. For tvOS versions prior to 13.4.8, update to tvOS 13.4.8 or later.

**Name of the Vulnerable Software and Affected Versions** Oracle VM VirtualBox versions prior to 5.2.44 Oracle VM VirtualBox versions prior to 6.0.24 Oracle VM VirtualBox versions prior to 6.1.12 **Description** The issue is related to insufficient input validation in the Core component of Oracle VM VirtualBox. Exploitation of this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability can be easily exploited by a highly privileged attacker with logon access to the infrastructure where Oracle VM VirtualBox is executed, and successful attacks require human interaction from a person other than the attacker. This can result in the takeover of Oracle VM VirtualBox. **Recommendations** For versions prior to 5.2.44, update to version 5.2.44 or later. For versions prior to 6.0.24, update to version 6.0.24 or later. For versions prior to 6.1.12, update to version 6.1.12 or later.

**Name of the Vulnerable Software and Affected Versions** Docker Desktop version 2.3.0.3 **Description** The issue is related to a lack of client verification in com.docker.vmnetd, which allows privilege escalation. **Recommendations** For Docker Desktop version 2.3.0.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.15.5 **Description** A validation issue existed in the handling of symlinks, which could allow a local attacker to elevate their privileges. This issue was addressed with improved validation of symlinks. **Recommendations** For versions prior to 10.15.5, update to macOS Catalina 10.15.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Oracle VM VirtualBox versions prior to 5.2.36 Oracle VM VirtualBox versions prior to 6.0.16 Oracle VM VirtualBox versions prior to 6.1.2 **Description** The issue is related to errors in resource release in the Core component of Oracle VM VirtualBox. It allows a low-privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks can result in unauthorized ability to cause a hang or frequently repeatable crash of Oracle VM VirtualBox, which may significantly impact additional products. **Recommendations** For versions prior to 5.2.36, update to version 5.2.36 or later. For versions prior to 6.0.16, update to version 6.0.16 or later. For versions prior to 6.1.2, update to version 6.1.2 or later.

**Name of the Vulnerable Software and Affected Versions** Charles version 4.2.7 **Description** A vulnerability exists in the import/export setup option, specifically an XML External Entity (XXE) issue. This allows an attacker to potentially access an intranet network and leak information if a user imports a malicious "Charles Settings.xml" file. **Recommendations** For version 4.2.7, avoid importing "Charles Settings.xml" files from untrusted sources to minimize the risk of exploitation. As a temporary workaround, consider restricting the use of the import/export setup option until a patch is available.

**Name of the Vulnerable Software and Affected Versions** OpenCart versions 3.0.2.0 and earlier **Description** The issue allows for a CSRF attack via the "index.php?route=account/password" URI, enabling an attacker to change a user's password. This is possible due to a vulnerability in the "/upload/catalog/controller/account/password.php" file. **Recommendations** For OpenCart versions 3.0.2.0 and earlier, as a temporary workaround, consider restricting access to the "/upload/catalog/controller/account/password.php" file until a patch is available. Avoid using the "index.php?route=account/password" URI for password changes until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHP Scripts Mall Naukri Clone Script versions prior to 3.0.4 **Description** The issue allows for the unrestricted upload of a file with a dangerous type. This is demonstrated by changing the file extension from .docx to .php in the edit resume det.php file. **Recommendations** For PHP Scripts Mall Naukri Clone Script versions prior to 3.0.4, update to version 3.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the edit resume det.php file to minimize the risk of exploitation. Avoid allowing uploads of files with executable extensions, such as .php, until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHP Scripts Mall Website Seller Script version 2.0.3 **Description** The issue allows for CSRF via the `user submit.php` endpoint with the `upd` parameter set to `2`, resulting in XSS. **Recommendations** For version 2.0.3, as a temporary workaround, consider restricting access to the `user submit.php` endpoint with the `upd` parameter set to `2` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft Exchange Server versions 2013 through 2016 **Description** The issue is related to an input sanitization problem that could lead to unintended information disclosure. An attacker who successfully exploits this could identify the existence of internal network addresses from a client on the Internet, potentially using this information as part of a larger attack. **Recommendations** For Microsoft Exchange Server 2013, update to a version that includes the fix for this issue. For Microsoft Exchange Server 2016, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive network information to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 10.3.6.0.0 and 12.1.3.0.0 Description: The issue is related to the Oracle WebLogic Server component of Oracle Fusion Middleware, specifically the Web Services subcomponent. It is an easily exploitable vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise the Oracle WebLogic Server. Successful attacks can result in the takeover of the Oracle WebLogic Server. The vulnerability is associated with flaws in the deserialization mechanism of the WLS9 ASYNC and WLS-WSAT components, which can be exploited by sending a specially crafted HTTP request. Recommendations: For Oracle WebLogic Server version 10.3.6.0.0, update to a version that includes the official fix. For Oracle WebLogic Server version 12.1.3.0.0, update to a version that includes the official fix. As a temporary workaround, consider restricting access to the Web Services subcomponent until a patch is available.