Mostafa Soliman

**Name of the Vulnerable Software and Affected Versions** Nozomi Networks Guardian and CMC (affected versions not specified) **Description** A SQL Injection issue has been found due to improper input validation in certain parameters used in the Query functionality. Authenticated users may be able to execute arbitrary SQL statements on the DBMS used by the web application, allowing them to extract arbitrary information from the DBMS in an uncontrolled way. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Unified Communications Manager IM & Presence Service (affected versions not specified) **Description** The issue is related to improper validation of user-submitted parameters in the web-based management interface, allowing an authenticated, remote attacker to conduct SQL injection attacks. This could enable the attacker to obtain or modify data stored in the underlying database by sending malicious requests. The vulnerability is due to a lack of protection against SQL query structure exploitation, which could allow a remote attacker to execute arbitrary SQL commands and gain unauthorized access to modify data. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Unified Communications Manager IM & Presence Service (affected versions not specified) **Description** The issue is related to improper validation of user-submitted parameters in the web-based management interface, allowing an authenticated, remote attacker to conduct SQL injection attacks. This could enable the attacker to obtain or modify data stored in the underlying database by sending malicious requests after authenticating to the application. The vulnerability is also described as a failure to protect the SQL query structure, which could allow a remote attacker to execute arbitrary SQL queries. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) (affected versions not specified) Cisco Unified Communications Manager (Unified CM) (affected versions not specified) Cisco Unified Communications Manager Session Management Edition (Unified CM SME) (affected versions not specified) Description: The issue is related to multiple vulnerabilities in the Cisco Unified Communications Manager IM & Presence Service, including path traversal and SQL injection attacks. These vulnerabilities could allow an attacker to conduct SQL injection attacks on an affected system. The vulnerabilities are also related to input validation errors. There is no information provided about the estimated number of potentially affected devices or real-world incidents. Recommendations: For Cisco Unified Communications Manager IM & Presence Service, consider restricting access to the system until a fix is available. For Cisco Unified Communications Manager, restrict access to the vulnerable components to minimize the risk of exploitation. For Cisco Unified Communications Manager Session Management Edition, avoid using the vulnerable functions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) (affected versions not specified) Cisco Unified Communications Manager (Unified CM) (affected versions not specified) Cisco Unified Communications Manager Session Management Edition (Unified CM SME) (affected versions not specified) **Description** The issue is related to multiple vulnerabilities, including path traversal and SQL injection attacks, in the Cisco Unified Communications Manager IM & Presence Service. One of the SQL injection vulnerabilities also affects Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition. The vulnerability is associated with input validation errors in the web interface, which could allow a remote attacker to execute arbitrary SQL queries. **Recommendations** For Cisco Unified Communications Manager IM & Presence Service, consider restricting access to the SQL database to minimize the risk of exploitation. For Cisco Unified Communications Manager, restrict access to the vulnerable SQL injection endpoint until a patch is available. For Cisco Unified Communications Manager Session Management Edition, avoid using the vulnerable SQL query function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) (affected versions not specified) Cisco Unified Communications Manager (Unified CM) (affected versions not specified) Cisco Unified Communications Manager Session Management Edition (Unified CM SME) (affected versions not specified) **Description** The issue is related to multiple vulnerabilities that could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. One of the SQL injection vulnerabilities affects not only Cisco Unified Communications Manager IM & Presence Service but also Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition. This could enable an attacker to conduct SQL injection attacks. The vulnerability is also related to incorrect restriction of directory path names in the web interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager SME, which may allow a remote attacker to gain unauthorized access to protected information. **Recommendations** For Cisco Unified Communications Manager IM & Presence Service, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco Unified Communications Manager, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco Unified Communications Manager Session Management Edition, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** UrBackup version 2.2.6 **Description** The issue allows an attacker to send a malformed request to the client over the network, triggering a NULL pointer dereference in `CClientThread::GetFileHashAndMetadata` function in `fileservplugin/CClientThread.cpp`, leading to the client application shutting down. **Recommendations** For UrBackup version 2.2.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x005cb509 due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files until a fix is available. As a temporary workaround, restrict the opening of JPEG files in the application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Read and Execute AV at memory address 0x0057898e due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x00578dd8 due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files until a fix is available. As a temporary workaround, restrict the opening of JPEG files in the application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x00578cc4 due to mishandling by FSViewer.exe. This could potentially be exploited for a Denial of Service (DoS) through an Access Violation, or possibly other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files from untrusted sources until a fix is available. As a temporary workaround, restrict the handling of JPEG files by FSViewer.exe to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x00402d7d due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files until a fix is available. As a temporary workaround, restrict the opening of JPEG files in the application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at 0x00402d6a due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files until a fix is available. As a temporary workaround, restrict the opening of JPEG files in the application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** FastStone Image Viewer version 6.2 **Description** The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x00578cb3 due to mishandling by FSViewer.exe. This could lead to a Denial of Service (DoS) through an Access Violation, and potentially other unspecified impacts. **Recommendations** For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files until a fix is available. As a temporary workaround, restrict the opening of JPEG files in the application to minimize the risk of exploitation.