Nikolas Sotiriu

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions through 4.6 **Description** The issue concerns an unprotected JMX Registry in Loftware Spectrum. **Recommendations** For versions through 4.6, consider restricting access to the JMX Registry as a temporary mitigation measure until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 4.6 HF14 **Description** The issue is related to Missing Authentication for a Critical Function. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to 4.6 HF14, update to version 4.6 HF14 or later to resolve the issue. As a temporary workaround, consider restricting access to critical functions until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 4.6 HF13 **Description** The issue is related to the deserialization of untrusted data. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to 4.6 HF13, update to version 4.6 HF13 or later to resolve the issue. As a temporary workaround, consider restricting the deserialization of untrusted data until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 5.1 **Description** The issue allows Server-Side Request Forgery (SSRF), which is a type of attack where an attacker can trick a server into making requests to internal or external resources. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to 5.1, update to version 5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to internal resources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 5.1 **Description** The issue allows Server-Side Request Forgery (SSRF), which is a type of attack where an attacker can trick a server into making requests to internal or external resources. This can potentially lead to unauthorized access to sensitive data or systems. The `testDeviceConnection` function is affected. **Recommendations** For versions prior to 5.1, consider disabling the `testDeviceConnection` function until a patch is available. Update to version 5.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 4.6 HF14 **Description** The issue is related to a hard-coded password in Loftware Spectrum. This could potentially allow unauthorized access. **Recommendations** For versions prior to 4.6 HF14, update to version 4.6 HF14 or later to resolve the issue. As a temporary workaround, consider restricting access to the system until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions through 4.6 **Description** The issue exposes sensitive information, specifically logs, to unauthorized actors. This allows unauthorized access to potentially sensitive data. **Recommendations** For Loftware Spectrum versions through 4.6, update to a version that addresses the exposure of sensitive information to unauthorized actors. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Loftware Spectrum versions prior to 4.6 HF14 **Description** The issue allows authenticated XXE attacks. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** For versions prior to 4.6 HF14, update to version 4.6 HF14 or later to resolve the issue. As a temporary workaround, consider restricting access to authenticated users to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Dell Peripheral Manager versions prior to 1.3.1 **Description** A local privilege escalation issue could potentially be exploited to gain arbitrary code execution on the system with privileges of the system user. **Recommendations** For versions prior to 1.3.1, update to Dell Peripheral Manager version 1.3.1 or greater to resolve the issue.

Name of the Vulnerable Software and Affected Versions: DELL SonicWALL Analyzer version 7.0 DELL SonicWALL Global Management System (GMS) versions 4.1 through 7.0 DELL SonicWALL Universal Management Appliance (UMA) versions 5.1 through 7.0 DELL SonicWALL ViewPoint versions 4.1 through 6.0 Description: An Authentication Bypass issue exists, allowing a remote malicious user to obtain access to the root account via the `skipSessionCheck` parameter to the "/appliance/" interface. Recommendations: For DELL SonicWALL Analyzer version 7.0, avoid using the `skipSessionCheck` parameter in the "/appliance/" interface until the issue is resolved. For DELL SonicWALL Global Management System (GMS) versions 4.1 through 7.0, restrict access to the UMA interface to minimize the risk of exploitation. For DELL SonicWALL Universal Management Appliance (UMA) versions 5.1 through 7.0, consider disabling the `/appliance/` interface until a patch is available. For DELL SonicWALL ViewPoint versions 4.1 through 6.0, restrict access to the `/appliance/` interface to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: DELL SonicWALL Global Management System (GMS) versions 4.1 through 7.0 DELL SonicWALL Analyzer version 7.0 DELL SonicWALL Universal Management Appliance (UMA) versions 5.1 through 7.0 DELL SonicWALL ViewPoint versions 4.1 through 6.0 Description: An Authentication Bypass issue exists via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access. Recommendations: For DELL SonicWALL Global Management System (GMS) versions 4.1 through 7.0, update to a version that fixes the Authentication Bypass issue. For DELL SonicWALL Analyzer version 7.0, update to a version that fixes the Authentication Bypass issue. For DELL SonicWALL Universal Management Appliance (UMA) versions 5.1 through 7.0, update to a version that fixes the Authentication Bypass issue. For DELL SonicWALL ViewPoint versions 4.1 through 6.0, update to a version that fixes the Authentication Bypass issue.

**Name of the Vulnerable Software and Affected Versions** Jolla Sailfish OS versions prior to 1.1.2.16 **Description** The issue allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a `tel:` URL. **Recommendations** For versions prior to 1.1.2.16, update to version 1.1.2.16 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** DATEV Grundpaket Basis CD version 23.20 **Description** The issue concerns untrusted search path vulnerabilities in the DMTGUI2.EXE and DvInesLogFileViewer.Exe components. These vulnerabilities allow local users to gain privileges via a Trojan horse file, specifically `DVBSKNLANG101.dll` or `DvZediTermSrvInfo004.dll`, placed in the current working directory. This can be exploited when the directory contains specific file types, including .dmt, .adl, .c02, .dof, or .jrf files. **Recommendations** For DATEV Grundpaket Basis CD version 23.20, consider removing or restricting access to the vulnerable `DMTGUI2.EXE` and `DvInesLogFileViewer.Exe` components until a patch is available. As a temporary workaround, avoid using directories that contain .dmt, .adl, .c02, .dof, or .jrf files with these components. Additionally, restrict the execution of `DVBSKNLANG101.dll` and `DvZediTermSrvInfo004.dll` files in the current working directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Majordomo versions 20110203 and earlier **Description** The issue allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ./../ sequence in the `extra` parameter to the help command. This is due to an incomplete fix for a previous issue, which causes the regular expression to produce .. (dot dot) sequences. **Recommendations** For Majordomo versions 20110203 and earlier, consider restricting access to the help command or disabling the `list file get` function in lib/Majordomo.pm until a complete fix is available. Avoid using the `extra` parameter in the help command to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Symantec Altiris Notification Server (NS) versions 6.0.0.1846 through 6.0 before R12 Symantec Altiris Deployment Solution versions 6.8 and 6.9 in Deployment Server Symantec Management Platform (SMP) versions 7.0 through 7.0 before SP3 Description: The issue is a stack-based buffer overflow in the `BrowseAndSaveFile` method within the Altiris eXpress NS ConsoleUtilities ActiveX control. This allows remote attackers to execute arbitrary code via a long string in the second argument to the `BrowseAndSaveFile` method. Recommendations: For Symantec Altiris Notification Server (NS) versions 6.0.0.1846 through 6.0 before R12, update to R12 or later. For Symantec Altiris Deployment Solution versions 6.8 and 6.9 in Deployment Server, consider disabling the `BrowseAndSaveFile` method until a patch is available. For Symantec Management Platform (SMP) versions 7.0 through 7.0 before SP3, update to SP3 or later.

**Name of the Vulnerable Software and Affected Versions** Websense Personal Email Manager versions prior to 7.1 Hotfix 4 Websense Email Security versions prior to 7.1 Hotfix 4 **Description** The issue allows remote attackers to cause a denial of service by sending a HTTP GET request to TCP port 8181 and closing the socket before the service can send a response. This is related to the Web Administrator service. **Recommendations** For Websense Personal Email Manager versions prior to 7.1 Hotfix 4, apply Hotfix 4 to resolve the issue. For Websense Email Security versions prior to 7.1 Hotfix 4, apply Hotfix 4 to resolve the issue. As a temporary workaround, consider restricting access to TCP port 8181 to minimize the risk of exploitation.