CVE-IDs Achievements

In the name of Allah, the Most Gracious, the Most Merciful.


CVE-2024-22169 – WD Discovery for macOS and Windows

Description: WD Discovery versions prior to 5.0.589 contain a misconfiguration in the Node.js environment settings that could allow code execution by utilizing an environment variable. Any malicious application operating with standard user permissions can exploit this vulnerability, enabling code execution within WD Discovery application’s context. WD Discovery version 5.0.589 addresses this issue by disabling certain features and fuses in Electron.

References:
https://www.westerndigital.com/support/product-security/wdc-24004-wd-discovery-desktop-app-version-5-0-589 – CVE-2024-22169
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22169
https://nvd.nist.gov/vuln/detail/CVE-2024-22169


CVE-2024-29986 – Microsoft Edge (Chromium Based)

Description: Microsoft Edge (Chromium-based) Information Disclosure Vulnerability.

References:
Microsoft Security Updates – CVE-2024-29986
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29986
https://nvd.nist.gov/vuln/detail/CVE-2024-29986


CVE-2024-20754 – Adobe Lightroom Desktop for macOS

Description: Lightroom Desktop versions 7.1.2 and earlier are affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. If the application uses a search path to locate critical resources such as programs, then an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

References:
Adobe Security Bulletin – CVE-2024-20754
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20754
https://nvd.nist.gov/vuln/detail/CVE-2024-20754


CVE-2024-1417 – WatchGuard AuthPoint Password Manager for macOS

Description: Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in WatchGuard AuthPoint Password Manager on MacOS allows an a adversary with local access to execute code under the context of the AuthPoint Password Manager application. This issue affects AuthPoint Password Manager for MacOS versions before 1.0.6.

References:
WatchGuard Security Advisory Detail – CVE-2024-1417
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1417
https://nvd.nist.gov/vuln/detail/CVE-2024-1417


CVE-2023-6288 – Devolutions Remote Desktop Manager for macOS

Description: Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

References:
Devolutions Security Advisories – CVE-2023-6288
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6288
https://nvd.nist.gov/vuln/detail/CVE-2023-6288


CVE-2021-33593 – Whale Browser

Description: Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

References:
NAVER Security Advisory – CVE-2021-33593
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33593
https://nvd.nist.gov/vuln/detail/CVE-2021-33593


CVE-2020-15816 – WD Discovery for macOS

Description: A malicious application running with standard user permissions could potentially execute code in the application’s process through library injection by using DYLD environment variables. Any sensitive resources that may be accessed via the application may be stolen.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15816
https://nvd.nist.gov/vuln/detail/CVE-2020-15816
https://www.westerndigital.com/support/productsecurity/wdc-20005-wd-discovery-remote-command-execution-vulnerability


CVE-2020-9942 – Apple (Safari for iOS and macOS)

Description: Visiting a malicious website may lead to address bar spoofing.

References:
Apple Security Advisory – CVE-2020-9942
https://nvd.nist.gov/vuln/detail/CVE-2020-9942
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9942


CVE-2019-18654 – AVG AntiVirus (Desktop) for Windows

Description: A Cross Site Scripting (XSS) issue exists in AVG AntiVirus (Free, Internet Security, and Premiere Edition) 19.3.2369 build 19.3.4241.440 in the Network Notification Popup, allowing an attacker to execute JavaScript code via an SSID Name.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18654
https://nvd.nist.gov/vuln/detail/CVE-2019-18654
https://medium.com/@YoKoKho/5-000-usd-xss-issue-at-avast-desktop-antivirus-for-windows-yes-desktop-1e99375f0968
http://firstsight.me/2019/10/5000-usd-xss-issue-at-avast-desktop-antivirus-for-windows-yes-desktop/


CVE-2019-18653 – Avast AntiVirus (Desktop) for Windows

Description: A Cross Site Scripting (XSS) issue exists in Avast AntiVirus (Free, Internet Security, and Premiere Edition) 19.3.2369 build 19.3.4241.440 in the Network Notification Popup, allowing an attacker to execute JavaScript code via an SSID Name.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18653
https://nvd.nist.gov/vuln/detail/CVE-2019-18653
https://medium.com/@YoKoKho/5-000-usd-xss-issue-at-avast-desktop-antivirus-for-windows-yes-desktop-1e99375f0968
http://firstsight.me/2019/10/5000-usd-xss-issue-at-avast-desktop-antivirus-for-windows-yes-desktop/


CVE-2019-18624 – Opera Mini for Android

Description: Illegal rendered at download feature in Opera Mini for Android version 44.1.2254.142553 that could lead to extension manipulation.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18624
https://nvd.nist.gov/vuln/detail/CVE-2019-18624
https://medium.com/@YoKoKho/illegal-rendered-at-download-feature-in-opera-mini-that-lead-to-extension-manipulation-with-rtlo-685bf2d77d51
http://firstsight.me/2019/10/illegal-rendered-at-download-feature-in-several-apps-including-opera-mini-that-lead-to-extension-manipulation-with-rtlo/


CVE-2019-9700 – Norton Password Manager for Android

Description: Norton Password Manager, prior to 6.3.0.2082, may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in order to obfuscate the source of network traffic.

References:
https://support.norton.com/sp/static/external/tools/security-advisories.html – CVE-2019-9700
https://support.symantec.com/us/en/article.SYMSA1483.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9700
https://nvd.nist.gov/vuln/detail/CVE-2019-9700
https://www.securityfocus.com/bid/108676


CVE-2018-18365 – Norton Password Manager for Android

Description: Norton Password Manager may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in order to obfuscate the source of network traffic.

References:
https://support.norton.com/sp/static/external/tools/security-advisories.html – CVE-2018-18365
https://support.symantec.com/us/en/article.symsa1475.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18365
https://nvd.nist.gov/vuln/detail/CVE-2018-18365
https://www.securityfocus.com/bid/106953


CVE-2018-18330 – Trend Micro Dr. Safety for Android (Consumer)

Description: An Address Bar Spoofing vulnerability in Trend Micro Dr. Safety for Android (Consumer) versions 3.0.1324 and below could allow an attacker to potentially trick a victim into visiting a malicious URL using address bar spoofing on the Private Browser of the app on vulnerable installations.

References:
https://helpcenter.trendmicro.com/en-us/article/TMKA-20514
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18330
https://nvd.nist.gov/vuln/detail/CVE-2018-18330


CVE-2018-6682 – McAfee True Key Android

Description: Address bar spoofing exposure in McAfee True Key (TK) 4.0.0.0 and earlier allows local users to expose confidential data via a crafted web site.

References:
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102825
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6682
https://nvd.nist.gov/vuln/detail/CVE-2018-6682


CVE-2018-4188 – Apple (Webkit for Safari at OS X, iOS, tvOS, iCloud for Windows, and iTunes for Windows)

Description: An issue was discovered in certain Apple products:
• iOS before 11.4 is affected.
• Safari before 11.1.1 is affected.
• iCloud before 7.5 on Windows is affected.
• iTunes before 12.7.5 on Windows is affected.
• tvOS before 11.4 is affected.
The issue involves the “WebKit” component. It allows remote attackers to spoof the address bar via a crafted web site.

References:
https://support.apple.com/HT208848
https://support.apple.com/HT208850
https://support.apple.com/HT208852
https://support.apple.com/HT208853
https://support.apple.com/HT208854
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4188
https://nvd.nist.gov/vuln/detail/CVE-2018-4188
http://www.securitytracker.com/id/1041029


CVE-2018-4870 – Samsung Internet Browser for Android

Description: An Address Bar Spoofing vulnerability in Samsung Internet Browser versions 6.2.00.31 and below could allow an attacker to potentially trick a victim into visiting a malicious URL using address bar spoofing on.

Reference: Not yet released. Still a private CVE Information.


CVE-2018-4869 – Samsung Internet Browser for Android

Description: An Address Bar Spoofing vulnerability in Samsung Internet Browser versions 6.2.00.8 and below could allow an attacker to potentially trick a victim into visiting a malicious URL using address bar spoofing on.

Reference: Not yet released. Still a private CVE Information.
But the general description about this issue could be seen at: https://www.youtube.com/watch?v=02LoePAi9jk


CVE-2017-17945 – ASUS HiVivo for Android

Description: The ASUS HiVivo application before 5.6.27 for Android has Missing SSL Certificate Validation.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17945
https://nvd.nist.gov/vuln/detail/CVE-2017-17945


CVE-2017-17944 – ASUS Vivobaby for Android

Description: The ASUS Vivobaby application before 1.1.09 for Android has Missing SSL Certificate Validation.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17944
https://nvd.nist.gov/vuln/detail/CVE-2017-17944


CVE-2016-9468 – Nextcloud and ownCloud Server

Description: Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. The exception message displayed on the DAV endpoints contained partially user-controllable input leading to a potential misrepresentation of information.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9468
https://nvd.nist.gov/vuln/detail/CVE-2016-9468
https://nextcloud.com/security/advisory/?id=nc-sa-2016-011
https://owncloud.org/security/advisory/?id=oc-sa-2016-021
https://github.com/nextcloud/server/commit/7350e13113c8ed484727a5c25331ec11d4d59f5f
https://github.com/nextcloud/server/commit/a4cfb3ddc1f4cdb585e05c0e9b2f8e52a0e2ee3e
https://github.com/owncloud/core/commit/96b8afe48570bc70088ccd8f897e9d71997d336e
https://github.com/owncloud/core/commit/bcc6c39ad8c22a00323a114e9c1a0a834983fb35


CVE-2016-4157 – Adobe Creative Cloud Desktop Application for Windows

Description: Untrusted search path vulnerability in the installer in Adobe Creative Cloud Desktop Application before 3.7.0.272 on Windows allows local users to gain privileges via a Trojan horse resource in an unspecified directory.

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4157
https://nvd.nist.gov/vuln/detail/CVE-2016-4157
https://helpx.adobe.com/security/products/creative-cloud/apsb16-21.html


CVE-2016-1742 – Apple iTunes Desktop Application for Windows

Description: Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

References:
https://support.apple.com/HT206379
http://lists.apple.com/archives/security-announce/2016/May/msg00006.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1742
https://nvd.nist.gov/vuln/detail/CVE-2016-1742
http://www.securitytracker.com/id/1035887

Share

You may also like...