Aggregator

A vulnerability was found in SolidWorks Desktop up to 2023. It has been rated as critical. This issue affects some unknown processing of the component DWG File Handler. The manipulation leads to use after free. The identification of this vulnerability is CVE-2023-2763. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical has been found in Dassault Systèmes eDrawings up to 2023/2024. This affects an unknown part of the component File Handler. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2024-1847. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability has been found in Dassault Systèmes SOLIDWORKS Desktop 2024/2024 SP1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component File Handler. The manipulation leads to use after free. This vulnerability is known as CVE-2024-1848. It is possible to launch the attack on the local host. There is no exploit available.

A vulnerability was found in MediaTek MT6765, MT6768, MT6779, MT6785, MT8385, MT8666, MT8667, MT8766, MT8768, MT8781, MT8788 and MT8789. It has been rated as critical. Affected by this issue is some unknown functionality of the component Vdec. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2024-20086. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical has been found in MediaTek MT6765, MT6768, MT6779, MT6785, MT8385, MT8666, MT8667, MT8766, MT8768, MT8781, MT8788 and MT8789. This affects an unknown part of the component Vdec. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2024-20087. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Linen and classified as problematic. Affected by this vulnerability is an unknown functionality of the file apps/web/pages/api/forgot-password/index.ts of the component Setting Handler. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2024-45522. Access to the local network is required for this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Linen. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to Privilege Escalation. This vulnerability is handled as CVE-2024-45522. Access to the local network is required for this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

VioHawk是一个通过危险程度引导的仿真测试工具，专门用于检测自动驾驶系统（ADS）的交通违规行为。

Кто стоит за атакой, подробности которой тщательно скрываются?

A vulnerability classified as critical has been found in Kaqoo Auction Software. This affects an unknown part of the file include/categories.inc.php. The manipulation of the argument install_root leads to code injection. This vulnerability is uniquely identified as CVE-2007-1790. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

澳个保机构指责Medibank此前网安预算过低

A vulnerability classified as critical has been found in OkCupid OkCupid Dating 3.4.6. Affected is an unknown function of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2014-5820. Access to the local network is required for this attack. There is no exploit available.

去年 11 月 18 日，SpaceX Starship 重型火箭在得克萨斯州博卡奇卡发射台发射。发射升空约 3 分钟，一级火箭分离后在墨西哥湾上空约 90 公里处爆炸。此后任务控制中心与 Starship 失去联系，启动自毁系统，Starship 在大约 150 公里的高度第二次爆炸。这两次爆炸不只是任务失败这么简单。研究发现，上述大爆炸在电离层“炸”出了有史以来最大的“洞”之一。这个洞绵延数千公里，持续了近一个小时。电离层是海平面以上约 50 到 1000 公里的地球大气的一个电离区域。太阳辐射导致中性大气被电离成电子和离子，电子和离子不断地和中性大气相互作用、运动，产生了比较稳定存在的电离层。

A vulnerability was found in Kaqoo Auction Software. It has been rated as critical. Affected by this issue is some unknown functionality of the file include/login.inc.php. The manipulation of the argument install_root leads to improper privilege management. This vulnerability is handled as CVE-2007-1790. The attack needs to be approached locally. Furthermore, there is an exploit available.

Mozilla Firefox拒绝服务漏洞（CNVD-2024-36732）