Red Hat Security Advisory 2024-5884-03
The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi
Aggregator
Linux lock_get_status() Use-After-Free
2 months 2 weeks ago
© 2024 Packet Storm. All rights reserved.
Red Hat Security Advisory 2024-5883-03
2 months 2 weeks ago
The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi
Google Chrome 今年至今修复了 10 个 0day
2 months 2 weeks ago
Google Chrome 浏览器今年至今修复了 10 个 0day。其中第 10 个是安全研究员 TheDog 报告的 CVE-2024-7965,是编译器后端在选择要生成的 JIT 编译指令时的一个 bug 导致的,位于 V8 JS 引擎中,远程攻击者可通过特制 HTML 页面利用堆损坏。第九个 0day 是 CVE-2024-7971。Google 证实 CVE-2024-7971 和 CVE-2024-7965 两个漏洞正被利用,但没有披露更多信息。
CVE-2024-6632 | Fortra FileCatalyst Workflow up to 5.1.6 Build 139 sql injection
2 months 2 weeks ago
A vulnerability classified as critical was found in Fortra FileCatalyst Workflow up to 5.1.6 Build 139. This vulnerability affects unknown code. The manipulation leads to sql injection.
This vulnerability was named CVE-2024-6632. The attack can be initiated remotely. There is no exploit available.
vuldb.com
BlackSuit 勒索软件
2 months 2 weeks ago
ドライフラワーみたい
CVE-2024-7071 | Brain Information Technologies Brain Low-Code up to 2.0.x sql injection
2 months 2 weeks ago
A vulnerability classified as critical has been found in Brain Information Technologies Brain Low-Code up to 2.0.x. This affects an unknown part. The manipulation leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-7071. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-6633 | Fortra FileCatalyst Workflow up to 5.1.6 Build 139 HSQL Database information disclosure
2 months 2 weeks ago
A vulnerability was found in Fortra FileCatalyst Workflow up to 5.1.6 Build 139. It has been rated as problematic. Affected by this issue is some unknown functionality of the component HSQL Database. The manipulation leads to information disclosure.
This vulnerability is handled as CVE-2024-6633. The attack may be launched remotely. There is no exploit available.
vuldb.com
How to Choose an LLM in Software Development
2 months 2 weeks ago
With so many Large Language Models (LLMs) out there, selecting the right LLM is crucial for any org
Foxit security advisory (AV24-483)
2 months 2 weeks ago
Canadian Centre for Cyber Security
От ChatGPT до Photoshop: как AB 3211 изменит работу с ИИ-инструментами
2 months 2 weeks ago
Технологические гиганты поддержали закон о маркировке ИИ.
工业互联网框架下的威努特全栈ICT解决方案
2 months 2 weeks ago
为工业企业打造全栈式工业互联网基础设施平台!
EDR Killer Ransomware: What It Is, How To Repel
2 months 2 weeks ago
Cloud Storage Bucket Security: PII Leak Brings Renewed Focus to Storage Bucket Access Controls
2 months 2 weeks ago
Key Takeaways News of a Google Cloud Storage bucket data leak has once again drawn public attenti
Hackers Infect ISPs With Malware That Steals Customer Credentials
2 months 2 weeks ago
Seattle Airport Blames Outages On Possible Cyberattack
2 months 2 weeks ago
Your Car’s Secret Weakness: The Hidden Dangers of Bluetooth
2 months 2 weeks ago
High-Risk CVE-2024-7965 Vulnerability in Chrome’s V8 Engine Requires Quick Fix
2 months 2 weeks ago
Key TakeawaysCISA has included a type of confusion vulnerability affecting Google
How to identify unknown assets while pen testing
2 months 2 weeks ago
error code: 1106
New 0-Day Attacks Linked to China’s ‘Volt Typhoon’
2 months 2 weeks ago
Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networks and laying the groundwork for the ability to disrupt communications between the United States and Asia during any future armed conflict with China.
BrianKrebs