Hazem Brini

Name of the Vulnerable Software and Affected Versions: Namaste! LMS versions through 2.6.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks. Recommendations: For versions through 2.6.4, update to a version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Intel(R) NUC HDMI Firmware Update Tool versions prior to 1.78.2.0.7 **Description** The issue is related to improper access control, which may allow an authenticated user to potentially enable escalation of privilege via local access. **Recommendations** For versions prior to 1.78.2.0.7, update to version 1.78.2.0.7 or later to resolve the issue.