ASA-2019-00474 – Mikrotik RouterOS: Stack exhaustion via recuring parsing of JSON

This vulnerability is similar to the CVE-2018-1158. An authenticated user communicating with the www binary can trigger a stack exhaustion vulnerability via recursive parsing of JSON containing message type M.

ASA-2019-00347 – Intel Open Cloud Integrity Technology (Open CIT) and Intel OpenAttestation: Improper input validation in the database

Identifier(s) ASA-2019-00347, CVE-2019-0181, INTEL-SA-00248 Title Improper input validation in the database Vendor(s) Intel Product(s) Intel Open Cloud Integrity Technology (Open CIT) Intel OpenAttestation Affected version(s) Intel Open Cloud Integrity Technology (Open CIT) all versions OpenAttestation all versions Fixed version(s) Intel recommends users of Intel Open Cloud Integrity Technology (Open CIT) and OpenAttestation discontinue use and move … Continue reading ASA-2019-00347 – Intel Open Cloud Integrity Technology (Open CIT) and Intel OpenAttestation: Improper input validation in the database