Aggregator

A vulnerability was found in Cisco Digital Media Manager 5.0.2. It has been declared as very critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2010-0571. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Cisco Digital Media Manager up to 5.0.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2010-0572. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

X 用户公开了华为海思 AI 芯片昇腾 910、昇腾 910B 和昇腾 610 的集成电路布局图（Die Shot）。华为是在 2019 年宣布了昇腾 910，它由台积电代工，采用 N7+ 工艺；而昇腾 910B 则由中芯国际代工，采用 N+1 工艺，属于 7 纳米节点。昇腾 910 由 1 个 Virtuvian AI 处理器、1 个 Nimbus V3 I/O 处理器芯片、四个 HBM2E 内存栈和两个用于一致性的虚拟芯片构成。其中 Virtuvian 由 32 个达芬奇 Max AI 核心构成。芯片的尺寸为 14.6 毫米 × 31.25 毫米，面积 456.25 平方毫米。相比之下，中芯国际的版本尺寸为 21.32 毫米 × 31.22 毫米，面积达到了 665.61 平方毫米，明显要大得多。昇腾 910B 的 Virtuvian 由 25 个达芬奇 AI 核心构成。可能的原因包括中芯国际的工艺晶体管密度低于台积电，或者海思大幅增强了达芬奇核心以至于减少了核心数量。

A vulnerability was found in vsftpd 3.0.2. It has been classified as problematic. This affects the function deny_file. The manipulation leads to an unknown weakness. This vulnerability is uniquely identified as CVE-2015-1419. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel and classified as problematic. Affected by this vulnerability is the function keyring_detect_cycle_iterator. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-0102. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

社交媒体巨头Meta计划投资100亿美元建设覆盖全球的海底光缆仅供自己使用

外卖、到店以外，美团找到「第三曲线」

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

Людям остаётся лишь наблюдать за механизированной готовкой.

DPanel：开源Docker 可视化面板系统

cby对这次吃瓜非常满意，因为看到了第一现场

Google Play谷歌商店代替品（Aurora Store）

In a presentation at the POC 2024 conference, cybersecurity expert Andrey Konovalov revealed a novel method for covertly disabling the LED indicator of the ThinkPad X230’s webcam, highlighting ongoing vulnerabilities in USB-connected devices. Like many laptops, the ThinkPad X230 has a built-in webcam that connects via USB. During his presentation, Konovalov detailed his journey of […]

The post Hackers Can Secretly Access ThinkPad Webcams by Disabling LED Indicator Light appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

2023年8月，美国国会研究服务部发布了一份关于《关岛——国防基础设施和战备情况》的报告。报道中强调，关岛是

Приложения-пугалки – новая киберугроза для владельцев смартфонов.

A vulnerability classified as problematic has been found in Imagination Technologies Graphics DDK up to 24.2 RTM2. Affected is an unknown function of the component GPU System Call Handler. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-43703. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in stalld up to 1.19.7. It has been rated as problematic. This issue affects some unknown processing of the file /tmp/rtthrottle. The manipulation leads to symlink following. The identification of this vulnerability is CVE-2024-54159. It is possible to launch the attack on the local host. There is no exploit available.

A vulnerability was found in Imagination Technologies Graphics DDK up to 24.2 RTM1. It has been declared as problematic. This vulnerability affects unknown code of the component GPU System Call Handler. The manipulation leads to improper handling of insufficient permissions or privileges. This vulnerability was named CVE-2024-43702. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.