Smile Thanapattheerakul

Name of the Vulnerable Software and Affected Versions: Logsign Unified SecOps Platform versions prior to 6.4.32 Description: This issue allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. The specific flaw exists within the web service, which listens on TCP port 443 by default. The issue results from the lack of proper implementation of the authentication algorithm. An attacker can leverage this vulnerability to bypass authentication on the system. Recommendations: Update to version 6.4.32 or later to stay secure. As a temporary workaround, consider restricting access to the web service that listens on TCP port 443 until a patch is applied.

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex Central (affected versions not specified) Description: The issue is related to insufficient validation of incoming requests in Trend Micro Apex Central, a security monitoring and management tool. This can be exploited by a remote attacker to gain unauthorized access to protected information. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to delete arbitrary files within sensitive directories on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this issue. The specific flaw exists within the "delete gsuite key file" endpoint, resulting from the lack of proper validation of a user-supplied `filename` prior to using it in file operations. An attacker can leverage this issue to delete critical files on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to delete arbitrary directories on affected installations. The flaw exists within the HTTP API service, which listens on TCP port 443 by default, due to the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to delete directories in the context of root. Authentication is required to exploit this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to disclose sensitive information on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this issue. The specific flaw exists within the HTTP API service, which listens on TCP port 443 by default. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this issue to disclose information in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to delete arbitrary files on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this issue. The specific flaw exists within the HTTP API service, which listens on TCP port 443 by default. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this issue to delete files in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to delete arbitrary files on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this issue. The specific flaw exists within the HTTP API service, which listens on TCP port 443 by default. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this issue to delete files in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Logsign Unified SecOps Platform (affected versions not specified) **Description** This issue allows remote attackers to disclose sensitive information on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this issue. The specific flaw exists within the "get response json result" endpoint, resulting from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this issue to disclose information in the context of root. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Parse Server versions prior to 6.5.7 Parse Server versions prior to 7.1.0 **Description** A vulnerability in Parse Server allows SQL injection when configured to use the PostgreSQL database. This issue enables remote attackers to bypass authentication on affected installations. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. The vulnerability can be exploited without requiring authentication. **Recommendations** For versions prior to 6.5.7, update to version 6.5.7 or later to resolve the issue. For versions prior to 7.1.0, update to version 7.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the PostgreSQL database until a patch is applied. Avoid using the `literalizeRegexPart` function in the affected API endpoints until the issue is resolved.