Gregory Draperi

**Name of the Vulnerable Software and Affected Versions** Symantec Endpoint Protection versions prior to 14.3 RU10 Patch 1 Symantec Endpoint Protection versions prior to 14.3 RU9 Patch 2 Symantec Endpoint Protection versions prior to 14.3 RU8 Patch 3 **Description** The software may be susceptible to a COM Hijacking issue. This type of issue allows an attacker to attempt to establish persistence and evade detection by hijacking COM references in the Windows Registry. **Recommendations** Update to Symantec Endpoint Protection 14.3 RU10 Patch 1 or later. Update to Symantec Endpoint Protection 14.3 RU9 Patch 2 or later. Update to Symantec Endpoint Protection 14.3 RU8 Patch 3 or later.

**Name of the Vulnerable Software and Affected Versions:** Riverbed SteelHead VCX versions 9.6.0a **Description:** A path traversal vulnerability exists due to improper input validation in the log filtering functionality exposed via the management web interface. An authenticated attacker can exploit this flaw by submitting crafted filter expressions to the `log filter` endpoint using the `filterStr` parameter. This input is processed by a backend parser that permits execution of file expansion syntax, allowing the attacker to retrieve arbitrary system files via the log viewing interface. **Recommendations:** Riverbed SteelHead VCX version 9.6.0a: Implement strict input validation for the `filterStr` parameter in the `log filter` endpoint to prevent the use of file expansion syntax.

Name of the Vulnerable Software and Affected Versions: Smart Touch Call versions prior to 1.0.0.5 Description: The issue is related to improper access control, allowing arbitrary webpage loading in the webview component. Recommendations: For versions prior to 1.0.0.5, update to version 1.0.0.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.15.4 **Description** The issue is related to the floppy driver in the Linux kernel, specifically the `show floppy` function in `drivers/block/floppy.c`. This function uses `printk` calls to reveal the addresses of kernel functions and global variables. An attacker can read this information from `dmesg` and use the addresses to find the locations of kernel code and data, potentially bypassing kernel security protections. The exploitation of this issue may allow an attacker to bypass kernel security and gain unauthorized access to protected information. **Recommendations** For Linux kernel versions prior to 4.15.4, update to a version that contains a fix for this issue to prevent potential exploitation.

**Name of the Vulnerable Software and Affected Versions** Apache Roller versions 5.1 through 5.1.1 **Description** The issue allows remote authenticated users with admin privileges for a weblog to execute arbitrary Java code via crafted Velocity Text Language (VTL) in the weblog page template. **Recommendations** For Apache Roller versions 5.1 through 5.1.1, consider restricting access to the weblog page template to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the use of Velocity Text Language (VTL) in the weblog page template to prevent the execution of arbitrary Java code.

**Name of the Vulnerable Software and Affected Versions** Cisco Unified Computing System (UCS) Central software version 1.3(0.1) **Description** The issue allows remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted request. **Recommendations** For Cisco Unified Computing System (UCS) Central software version 1.3(0.1), consider restricting access to vulnerable components until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.