Nice Linear eMerge E3-Series

1. EXECUTIVE SUMMARY

  • CVSS v3 10.0
  • ATTENTION: Exploitable remotely/low attack complexity/public exploits are available
  • Vendor: Nice
  • Equipment: Linear eMerge E3-Series
  • Vulnerabilities: Path traversal, Cross-site scripting, OS command injection, Unrestricted Upload of File with Dangerous Type, Incorrect Authorization, Exposure of Sensitive Information to an Authorized Actor, Insufficiently Protected Credentials, Use of Hard-coded Credentials, Cross-site Request Forgery, Out-of-bounds Write
Read more Nice Linear eMerge E3-Series

ZDI-24-230: Kofax Power PDF TIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-27337.

http://www.zerodayinitiative.com/advisories/ZDI-24-230/

ZDI-24-231: Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-27339.

http://www.zerodayinitiative.com/advisories/ZDI-24-231/

ZDI-24-232: Kofax Power PDF JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 3.3. The following CVEs are assigned: CVE-2024-27334.

http://www.zerodayinitiative.com/advisories/ZDI-24-232/

Homelab

HP ProLiant MicroServer Gen8

Some time ago I wrote about a home server. This time it is about my home lab. When choosing a server, I looked at size, capacity and power consumption. And I ended up choosing the HP ProLiant MicroServer Gen8. I did some quick research and it turned out that the best I could choose was the Xeon 1265L-V2 processor (best power to TDP ratio) and 16Gb ECC RAM. To this I added a total of four Seagate ST2000VM003 3.5″ drives, each with a capacity of 2TB.

This HP ProLiant MicroServer Gen8 is a powerful and reliable option for those who need a microtower server. Featuring an Intel Xeon E3-1265L v2 CPU, 4 cores, 8 threads, 2.5GHz base and 3.5GHz boost and 16GB ECC DDR3 RAM (maximum possible). The operating system is installed on a Kingston A400 SSD 2.5″ SATA 960GB (SA400S37/960G) for agility and performance.

Read more Homelab

Users in EU will have a choice

Google has just announced a change for users in Europe that will allow them to decide exactly how much data sharing is right for them. The new policy, which the company says is in response to the EU’s Digital Markets Act (DMA), allows users to opt out of data sharing for all, some or none of Google’s selected services. The services listed include YouTube, search, advertising services, Google Play, Chrome, Google Shopping and Google Maps. However, the policy is not airtight – Google will still share user information when necessary to perform a task (for example, when you pay for a purchase on Google Shopping using Google Pay), to comply with the law, to prevent fraud or to protect against abuse.

Read more Users in EU will have a choice

Nextcloud wins the Acteurs du Libre European Award 2023

Nextcloud has won the European Award of the Acteurs du Libre contest! This is a huge recognition for the community, the Nextcloud team, and the visionary leaders behind the project.

What is the Acteurs du Libre contest?

The Acteurs du Libre contest is part of the Open Source Experience event, which celebrates the achievements of Free Software companies, entrepreneurs, projects and associations. The contest awards six prizes every year, each honoring a different aspect of FOSS development, management or implementation: the Committed Public Service Award, the European Award in collaboration with APELL, the Business Development Award, the Best Open Source Strategy Award, the Open and Ethical Digital Award, and the Jury’s Special Award.

Read more Nextcloud wins the Acteurs du Libre European Award 2023

Comparison of lightweight Linux distros

DietPi

I started to look for a replacement for my DietPi (I’m using it as my everyday OS). It’s installed as a VM on the Proxmox server. It’s fast, it’s nice, it reliable, but I want to change something 🙂

Also, one of the reasons why I selected DietPi was the Home Assistant core. Or I should say – the way it’s installed. And how most of the software is managed in DietPi. It uses DietPi-Software, which allows you to quickly and easily install popular software “ready to run” and this software is already optimized for your system. Only the software you need is installed.

What is DietPi? DietPi is an extremely lightweight Debian OS, highly optimized for minimal CPU and RAM resource usage, ensuring your SBC always runs at its maximum potential. It has a lots of different flavours, so you may install it on Raspberry Pi, Odroid, Pine64, Radxa, Allo, NanoPi, OrangePi, but also on standard PC and as a VM (I’m sure I didn’t mention all of them, but those I remember :P)

Read more Comparison of lightweight Linux distros

Patch your confluence if it’s not done yet

https://www.rapid7.com/blog/post/2023/10/04/etr-cve-2023-22515-zero-day-privilege-escalation-in-confluence-server-and-data-center/

Atlassian has been made aware of an issue reported by a handful of customers where external attackers may have exploited a previously unknown vulnerability in publicly accessible Confluence Data Center and Server instances to create unauthorized Confluence administrator accounts and access Confluence instances.

The Vulnerability has been marked with a maximum CVSS value (10/10) and allows you to create a Confluence administrator account from the Internet.