Djnn

**Name of the Vulnerable Software and Affected Versions** AdGuard Home versions prior to 0.107.77 **Description** When started with the `--glinet` flag, the software contains an authentication bypass that allows unauthenticated attackers to gain full administrative access. This occurs due to unsanitized string concatenation in the token file path construction within the `authglinet` middleware. Attackers can use a path traversal sequence in the `Admin-Token` cookie to redirect file reads to arbitrary paths. Over 122,000 potentially affected devices have been identified worldwide. **Recommendations** Update to version 0.107.77 or later.

**Name of the Vulnerable Software and Affected Versions** libusb versions prior to 1.0.30 **Description** A NULL pointer dereference occurs when a malformed USB configuration descriptor is supplied. Specifically, if an interface claims `bNumEndpoints` greater than zero but is followed by a class-specific descriptor with a `bLength` exceeding the remaining buffer size, the `parse interface()` function returns early without allocating the endpoint array. This can be exploited via the functions `libusb get active config descriptor` or `libusb get config descriptor` by providing crafted descriptors through network sources, file-based descriptor parsing, or virtualized USB passthrough, leading to an application crash when iterating over endpoints. **Recommendations** Update to version 1.0.30 or later.

**Name of the Vulnerable Software and Affected Versions** SuiteNumerique Messages versions 0.2.0 **Description** A security flaw exists in the ThreadAccessSerializer function within the src/backend/core/api/serializers.py file of the ThreadAccess component. This flaw leads to improper authentication and can be exploited remotely. The exploit for this issue has been publicly released. The vulnerable component should be upgraded. **Recommendations** Upgrade to version 0.3.0.