Aggregator

A vulnerability was found in mympc CD-Storm 1.0.0.1. It has been classified as very critical. Affected is an unknown function of the file mplayerc.exe of the component Media Player. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2007-4939. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Scott R. Lemmon Proxomitron Naoko-4 up to Beta4. This affects an unknown part of the component Error Message Handler. The manipulation leads to basic cross site scripting. This vulnerability is uniquely identified as CVE-2001-0991. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

McCoy Global Inc. Has Been Claimed a Victim to RansomHub Ransomware

Чудо инженерии, вдохновленное муравьями.

Billet Precision Ltd. Has Been Claimed a Victim to Akira Ransomware

A vulnerability was found in IBM MQ Operator up to 2.0.18/2.2.2/2.3.3/2.4.7/3.0.1. It has been classified as problematic. Affected is an unknown function. The manipulation leads to risky cryptographic algorithm. This vulnerability is traded as CVE-2024-27255. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in IBM MQ Operator up to 2.0.18/2.2.2/2.3.3/2.4.7/3.0.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cleartext transmission of sensitive information. This vulnerability is handled as CVE-2023-47745. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A Threat Actor Claims to be Selling the Data of Ardyss Digital and ArdyssLife

Нулевое детектирование на VirusTotal подчёркивает масштаб угрозы.

A vulnerability classified as problematic has been found in IBM Engineering Test Management 7.0.2/7.0.3. This affects an unknown part of the component Web UI. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-43054. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

miyako Claims to be Selling Access to an Unidentifiied Private College Intranet in California

A vulnerability, which was classified as problematic, was found in JM Twitter Cards Plugin on WordPress. Affected is an unknown function of the component Meta Description Handler. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-1769. Access to the local network is required for this attack. There is no exploit available.

A vulnerability was found in Linux Kernel up to 5.13.5. It has been rated as critical. Affected by this issue is the function io_init_wq_offload in the library include/linux/slab.h. The manipulation leads to memory leak. This vulnerability is handled as CVE-2021-47292. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.10.53/5.13.5. Affected is the function skb_linearize of the component sockmap. The manipulation leads to memory leak. This vulnerability is traded as CVE-2021-47298. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

MIT раскрывает секрет формы электронов.

The vulnerabilities, now patched, posed significant risks, including unauthorized file uploads, privilege escalation and SQL injection attacks

US healthcare giant Ascension revealed that 5.6 million individuals have had their personal, medical and financial information breached in a ransomware attack

Two WordPress plugins required by the premium WordPress WPLMS theme, which has over 28,000 sales, are vulnerable to more than a dozen critical-severity vulnerabilities. [...]

miyako is Allegedly Selling the Data of GoSuite Enterprise