Aggregator

A vulnerability, which was classified as problematic, was found in Wavelog up to 1.8.0. Affected is the function index of the file /qso of the component Live QSO. The manipulation of the argument manual leads to cross site scripting. This vulnerability is traded as CVE-2024-8521. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Ollydbg 1.0.6/1.0.8b/1.0.9/1.10 and classified as critical. Affected by this vulnerability is the function OutputDebugString. The manipulation leads to format string. This vulnerability is known as CVE-2004-0733. The attack can be launched remotely. Furthermore, there is an exploit available.

Submit #399819 / VDB-276726

A new Android malware named SpyAgent uses optical character recognition (OCR) technology to steal cryptocurrency wallet recovery phrases from screenshots stored on the mobile device. [...]

A recently disclosed security flaw in OSGeo GeoServer GeoTools has been exploited as part of multiple campaigns to deliver cryptocurrency miners, botnet malware such as Condi and JenX, and a known backdoor called SideWalk. The security vulnerability is a critical remote code execution bug (CVE-2024-36401, CVSS score: 9.8) that could allow malicious actors to take over susceptible instances. In

Submit #397221 / VDB-126385

A vulnerability was found in Cabron Connector 1.1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file services/samples/inclusionService.php. The manipulation of the argument CabronServiceFolder leads to file inclusion. This vulnerability is known as CVE-2007-2154. The attack can be launched remotely. Furthermore, there is an exploit available.

Submit #397220 / VDB-137411

Threat actors have long leveraged typosquatting as a means to trick unsuspecting users into visiting malicious websites or downloading booby-trapped software and packages. These attacks typically involve registering domains or packages with names slightly altered from their legitimate counterparts (e.g., goog1e.com vs. google.com). Adversaries targeting open-source repositories across

by Mike Saunders, Principal Consultant     This blog is the twelfth in a series of blogs on obfuscation techniques for hiding shellcode. You can find the rest of the […]

The funds from Germany's Sovereign Tech Fund will be used to integrate zero-trust capabilities, tools for software bill of materials, and other security features.

A vulnerability was found in tcpdump up to 4.9.1. It has been rated as problematic. Affected by this issue is the function resp_get_length of the file print-resp.c of the component RESP Parser. The manipulation leads to improper resource management. This vulnerability is handled as CVE-2017-12989. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.7.4. Affected is the function printer_write of the file drivers/usb/gadget/function/f_printer.c. The manipulation leads to Privilege Escalation. This vulnerability is traded as CVE-2024-25741. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability has been found in Linux Kernel up to 6.6.6 and classified as problematic. Affected by this vulnerability is the function tdx_early_init/sme_early_init of the file arch/x86/coco/tdx/tdx.c of the component VMM Handler. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2024-25744. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in 1E Platform 8.4.1.229/23.7.1.80/23.11.1.15/24.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to open redirect. This vulnerability is known as CVE-2024-7211. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Linux Kernel up to 6.9.10 and classified as problematic. Affected by this issue is some unknown functionality in the library lib/closure.c of the component closures. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-42252. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.0. It has been classified as critical. This affects the function tpm_buf_check_hmac_response. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-42255. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.0. It has been declared as critical. This vulnerability affects the function memtostr_pad in the library ext4.h. The manipulation leads to improper null termination. This vulnerability was named CVE-2024-42257. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.