Aggregator

Межсетевой экран нового поколения готов заменить зарубежные аналоги.

A vulnerability was found in FIAT Forum 3.8.41. It has been rated as critical. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-6643. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability was found in East Wind Software advdaudio.ocx 1.5.1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file advdaudio.ocx of the component ActiveX Control. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2007-2576. The attack may be launched remotely. Furthermore, there is an exploit available.

This post first appeared on blog.netwrix.com and was written by Jeff Warren.
PowerShell is one of the most popular platforms for malicious actors. To protect your critical data and systems, it’s vital to implement strategies for blocking and detecting attacks that exploit PowerShell. However, you should not assume those security measures are airtight — adversaries are constantly looking for ways to bypass your defenses. Let’s explore three … Continued

Enterprise Security / VulnerabilityIvanti has released software updates to address multiple securi

安研院旗下的NEURON战队获得过红帽杯、网鼎杯、第五空间、津门杯、陇警杯、长安杯、长城杯、强网拟态、羊城杯等多场次安全大的一等奖或冠军，也承办过多场次知名的安全竞赛。

Microsoft и WordPress в эпицентре угроз.

A vulnerability classified as critical has been found in Visteon Infotainment. Affected is an unknown function of the component DeviceManager iAP Serial Number Handler. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-8355. It is possible to launch the attack on the physical device. There is no exploit available.

A vulnerability was found in Apache Seata up to 1.8.0/2.0.0. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2024-22399. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Eclipse Glassfish up to 7.0.9. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to open redirect. This vulnerability was named CVE-2024-8646. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.