Ethan Mckee-Harris

**Name of the Vulnerable Software and Affected Versions** Emby Media Server version 4.8.3.0 **Description** A Stored Cross Site Scripting issue allows a remote attacker to escalate privileges via the notifications.html component. **Recommendations** For Emby Media Server version 4.8.3.0, consider disabling access to the notifications.html component until a patch is available to prevent privilege escalation.

**Name of the Vulnerable Software and Affected Versions** ASP.NET and Visual Studio (affected versions not specified) **Description** The issue is caused by synchronization errors when using a shared resource in the .NET platform and Microsoft Visual Studio. This can allow a remote attacker to bypass existing security restrictions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.