Stefan Grönke

**Name of the Vulnerable Software and Affected Versions** Appliance (affected versions not specified) **Description** This issue allows appliance compromise at boot time. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Privileged Access Management System (affected versions not specified) **Description** This issue allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by uploading a specially crafted upgrade file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PAM (affected versions not specified) **Description** A specific authentication strategy allows learning the ids of PAM users associated with certain authentication types. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PAM (affected versions not specified) **Description** The issue allows an unauthenticated attacker to access information in the PAM database. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** An improper input validation allows an unauthenticated attacker to alter PAM logs by sending a specially crafted HTTP request. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Software (affected versions not specified) **Description** An improper session validation allows an unauthenticated attacker to cause certain request notifications to be executed in the context of an incorrect user by spoofing the client IP address. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Symantec Privileged Access Management versions prior to 4.2.1 **Description** A malicious actor can fix the session of a Symantec Privileged Access Management user by tricking the user into clicking a specially crafted link to the PAM server. This issue is related to cross-site request forgery. The exploitation of this issue may allow a remote attacker to hijack a user's session. **Recommendations** For Symantec Privileged Access Management versions prior to 4.2.1, update to version 4.2.1 to resolve the issue. As a temporary workaround, consider restricting access to the PAM server to minimize the risk of exploitation. Avoid using specially crafted links to the PAM server until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to improper input validation in the CSRF filter, which results in unsanitized user input being written to the application logs. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** pgAdmin versions prior to 7.7 **Description** The issue occurs when the pgAdmin server HTTP API validates the path a user selects to external PostgreSQL utilities such as pg dump and pg restore. This allows an authenticated user to run arbitrary commands on the server due to insufficient input validation. Approximately 5,294 results are affected, according to ZoomEyeDork. **Recommendations** For pgAdmin versions prior to 7.7, update to version 7.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the pgAdmin server HTTP API to minimize the risk of exploitation. Avoid using the API endpoint that validates the path to external PostgreSQL utilities until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** iTerm2 versions up to and including 3.3.5 **Description** A vulnerability exists in the way that iTerm2 integrates with tmux's control mode, which may allow an attacker to execute arbitrary commands by providing malicious output to the terminal. This may allow an attacker to execute arbitrary commands on their victim's computer by providing malicious output to the terminal. It could be exploited using command-line utilities that print attacker-controlled content. **Recommendations** For versions up to and including 3.3.5, update to a version later than 3.3.5 to resolve the issue. As a temporary workaround, consider restricting the use of tmux's control mode in iTerm2 until a patch is available. Avoid using command-line utilities that print attacker-controlled content in the affected terminal app until the issue is resolved.