We have the latest and free jrc coupon codes, discounts and promotion codes to give you the best savings. To use a coupon, simply click the coupon code and enter the code when checking out at the store.
π¨ NEW: CVE-2023-26602 π¨ ASUS iKVM firmware through 1.14.51 allows remote attackers to execute arbitrary code by using SNMP to create extensions, as demonstrated by snmpset for NET-SNMP-EXTEND-MIB with /bin/sh... (click for more)
π¨ NEW: CVE-2022-32473 π¨ An issue was discovered in Insyde with kernel 5.0 through 5.5. DMA attacks on the HddPassword shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues th... (click for more)
π¨ NEW: CVE-2022-32476 π¨ An issue was discovered in Insyde with kernel 5.0 through 5.5. DMA attacks on the AhciBusDxe shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues tha... (click for more)
π¨ NEW: CVE-2022-32470 π¨ An issue was discovered in Insyde with kernel 5.0 through 5.5. DMA attacks on the FwBlockServiceSmm shared buffer used by SMM and non-SMM code could cause TOCTOU race-condition iss... (click for more)
π¨ NEW: CVE-2022-32953 π¨ An issue was discovered in Insyde with kernel 5.0 through 5.5. DMA attacks on the SdHostDriver buffer used by SMM and non-SMM code could cause TOCTOU race-condition issues that cou... (click for more)
π¨ NEW: CVE-2022-34885 π¨ An improper input sanitization vulnerability in the Motorola router could allow a local user with elevated permissions to execute arbitrary code. Severity: MEDIUM
π¨ NEW: CVE-2022-27538 π¨ A potential Time-of-Check to Time-of-Use () vulnerability has been identified in the BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and in... (click for more)
π¨ NEW: CVE-2022-25967 π¨ Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution () by overwriting template engine configuration variables with view options received from The Express rend... (click for more)
π¨ NEW: CVE-2022-43971 π¨ An arbitrary code exection vulnerability exists in Linksys Wireless-AC Universal Media Connector with firmware <= 1.0.02 (build3). The do_setNTP function within the httpd binary uses... (click for more)
π¨ NEW: CVE-2022-43973 π¨ An arbitrary code execution vulnerability exisits in Linksys Wireless-G Broadband Router with firmware <= 4.30.18.006. The Check_TSSI function within the httpd binary uses unvalidate... (click for more)
π¨ NEW: CVE-2022-34916 π¨ Apache Flume versions 1.4.0 through 1.10.0 are vulnerable to a remote code execution () attack when a configuration uses a JMS Source with a JNDI LDAP data source URI when an attacker has... (click for more) Severity: CRITICAL
π¨ NEW: CVE-2021-26392 π¨ Insufficient verification of missing size check in '' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by... (click for more) Severity: HIGH
π¨ NEW: CVE-2021-26391 π¨ Insufficient verification of multiple header signatures while loading a Trusted Application () may allow an attacker with privileges to gain code execution in that or the OS/kernel. Severity: HIGH
π¨ NEW: CVE-2022-36337 π¨ An issue was discovered in Insyde with kernel 5.0 through 5.5. A stack buffer overflow vulnerability in the MebxConfiguration driver leads to arbitrary code execution. Control of a... (click for more)
Emerging Vulnerability Found CVE-2022-30768 - A Stored Cross Site Scripting () issue in ZoneMinder 1.36.12 allows an attacker to execute HTML or JavaScript code via the Username field when an Admin (or non-Admin users that can see other use... See
Emerging Vulnerability Found CVE-2020-21016 - D-Link DIR-846 devices with firmware allow remote attackers to execute arbitrary code as root via HNAP1/control/SetGuestWLanSettings.php. See
Emerging Vulnerability Found CVE-2022-42468 - Apache Flume versions 1.4.0 through 1.10.1 are vulnerable to a remote code execution () attack when a configuration uses a JMS Source with an unsafe providerURL. This issue is fixed by limiting ... See
Emerging Vulnerability Found CVE-2022-29823 - Feather-Sequalize cleanQuery method uses insecure recursive logic to filter unsupported keys from the query object. This results in a Remote Code Execution () with privileges of application. See
Emerging Vulnerability Found CVE-2022-3586 - A flaw was found in the Linux kernelβs networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer () cb field after the same had been enqueu... See
π¨ NEW: CVE-2022-38983 π¨ The BT Hfp Client module has a Use-After-Free () vulnerability.Successful exploitation of this vulnerability may result in arbitrary code execution.
π¨ NEW: CVE-2020-27814 π¨ A heap-buffer overflow was found in the way handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code ... (click for more) Severity: HIGH
π¨ NEW: CVE-2022-35572 π¨ On Linksys WiFi Router with firmware version 1.0.00.037 and lower, (and potentially other vendors/devices due to code reuse), the /SysInfo.htm URI does not require a session ID. This w... (click for more)
π¨ NEW: CVE-2022-38667 π¨ HTTP applications () based on Crow through 1.0+4 may allow a Use-After-Free and code execution when HTTP pipelining is used. Severity: CRITICAL
π¨ NEW: CVE-2017-14746 π¨ Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted request. Severity: CRITICAL
π¨ NEW: CVE-2021-22650 π¨ An attacker may use TWinSoft and a malicious source project file () to extract files on machine executing Ovarro TWinSoft, which could lead to code execution.
π¨ NEW: CVE-2022-21504 π¨ The code in U3 was missing an appropiate file descriptor count to be missing. This resulted in a use count error that allowed a file descriptor to a socket to be closed and freed while ... (click for more) Severity: MEDIUM
π¨ NEW: CVE-2022-30234 π¨ A CWE-798: Use of Hard-coded Credentials vulnerability exists that could allow arbitrary code to be executed when root level access is obtained. Affected Products: Wiser Smart, & EE... (click for more) Severity: CRITICAL
π¨ NEW: CVE-2021-21772 π¨ A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP functionality of 3MF Consortium 2.0.0. A specially crafted 3MF file can lead to code execution. An at... (click for more) Severity: HIGH
π¨ NEW: CVE-2022-29464 π¨ Certain products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequenc... (click for more)
π¨ NEW: CVE-2021-44082 π¨ textpattern 4.8.7 is vulnerable to Cross Site Scripting () via /textpattern/index.php,Body. A remote and unauthenticated attacker can use to trigger remote code execution by uploading... (click for more)