Yijie Xun

**Name of the Vulnerable Software and Affected Versions** fceux version 2.7.0 **Description** The network server of fceux has a path traversal vulnerability, allowing attackers to overwrite any files on the server without authentication by using a fake ROM. **Recommendations** For fceux version 2.7.0, as a temporary workaround, consider restricting access to the network server until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CSAPP Lab (affected versions not specified) **Description** The issue allows a remote attacker to execute arbitrary code via the lab3 of csapp, lab3/buflab-update.pl component. This is a Buffer Overflow vulnerability in CSAPP Lab CSAPP Lab3 15-213 Fall 20xx. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.