Ignatiusmichael

**Name of the Vulnerable Software and Affected Versions** Captura versions up to 8.0.0 **Description** A critical vulnerability was found in Captura, affecting unknown code in the library CRYPTBASE.dll. The manipulation leads to an uncontrolled search path. Attacking locally is a requirement, and the complexity of an attack is rather high. The exploitation appears to be difficult. **Recommendations** For Captura versions up to 8.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Abstrium Pydio Cells version 4.2.0 **Description** A vulnerability was found in the component Change Subscription Handler, which leads to authorization bypass. The manipulation of this component can be exploited, and it has been disclosed to the public. Upgrading to version 4.2.1 is able to address this issue. **Recommendations** For Abstrium Pydio Cells version 4.2.0, upgrade to version 4.2.1 to address the issue. As a temporary workaround, consider restricting access to the Change Subscription Handler component until the upgrade is applied.

**Name of the Vulnerable Software and Affected Versions** Abstrium Pydio Cells version 4.2.0 **Description** A critical issue has been found in the User Creation Handler component, leading to improper access controls. The attack can be initiated remotely. Upgrading to version 4.2.1 addresses this issue. **Recommendations** For Abstrium Pydio Cells version 4.2.0, upgrade to version 4.2.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Abstrium Pydio Cells version 4.2.0 **Description** A critical vulnerability was found in the User Creation Handler component, leading to improper control of resource identifiers. The attack can be initiated remotely. Upgrading to version 4.2.1 is able to address this issue. **Recommendations** For Abstrium Pydio Cells version 4.2.0, upgrade to version 4.2.1 to address the issue. As a temporary workaround, consider restricting access to the User Creation Handler component until the upgrade is applied.

**Name of the Vulnerable Software and Affected Versions** Abstrium Pydio Cells version 4.2.0 **Description** A problematic vulnerability has been found in Abstrium Pydio Cells, affecting the component Chat. This issue leads to basic cross-site scripting and can be initiated remotely. The manipulation affects some unknown processing of the component. **Recommendations** For Abstrium Pydio Cells version 4.2.0, upgrade to version 4.2.1 to address this issue. It is recommended to upgrade the affected component.