Startups of the Year 2024: YellowMay - Innovating the Insurance Industry
Welcome to HackerNoon’s Startups of The Year 2024 interview series, spotlighting startups from arou
Aggregator
Finland seizes servers of 'Sipultie' dark web drugs market
2 months 3 weeks ago
error code: 1106
Outlook Forensic Toolbox Helps Access Deleted Messages
2 months 3 weeks ago
What can a forensic expert find in an Outlook data file? Ca
CVE-2023-30577 | AMANDA up to 3.5.3 runtar.c argument injection (GHSA-crrw-v393-h5q3)
2 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in AMANDA up to 3.5.3. This issue affects some unknown processing of the file runtar.c. The manipulation leads to argument injection.
The identification of this vulnerability is CVE-2023-30577. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-3997 | Splunk SOAR up to 6.0.2 Web Endpoint neutralization for logs (SVD-2023-0702)
2 months 3 weeks ago
A vulnerability has been found in Splunk SOAR up to 6.0.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Web Endpoint. The manipulation leads to improper output neutralization for logs.
This vulnerability is known as CVE-2023-3997. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-36281 | Harrison Chase LangChain 0.0.171 JSON File load_prompt code injection (Issue 4394)
2 months 3 weeks ago
A vulnerability was found in Harrison Chase LangChain 0.0.171 and classified as critical. Affected by this issue is some unknown functionality of the component JSON File Handler. The manipulation of the argument load_prompt leads to code injection.
This vulnerability is handled as CVE-2023-36281. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2023-4571 | Splunk IT Service Intelligence up to 4.13.2/4.15.2 ANSI Escape neutralization for logs (SVD-2023-0810)
2 months 3 weeks ago
A vulnerability has been found in Splunk IT Service Intelligence up to 4.13.2/4.15.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component ANSI Escape Handler. The manipulation leads to improper output neutralization for logs.
This vulnerability is known as CVE-2023-4571. An attack has to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-29075 | Autodesk AutoCAD PRT File Parser out-of-bounds write (ZDI-23-1436)
2 months 3 weeks ago
A vulnerability was found in Autodesk AutoCAD. It has been rated as critical. Affected by this issue is some unknown functionality of the component PRT File Parser. The manipulation leads to out-of-bounds write.
This vulnerability is handled as CVE-2023-29075. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2023-45363 | MediaWiki up to 1.35.11/1.39.4/1.40.0 ApiPageSet.php denial of service
2 months 3 weeks ago
A vulnerability was found in MediaWiki up to 1.35.11/1.39.4/1.40.0. It has been declared as problematic. This vulnerability affects unknown code of the file ApiPageSet.php. The manipulation leads to denial of service.
This vulnerability was named CVE-2023-45363. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-45463 | Netis N3Mv2 1.0.1.865 FUN_0040dabc hostName denial of service
2 months 3 weeks ago
A vulnerability was found in Netis N3Mv2 1.0.1.865. It has been declared as problematic. This vulnerability affects the function FUN_0040dabc. The manipulation of the argument hostName leads to denial of service.
This vulnerability was named CVE-2023-45463. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com
CVE-2023-38408 | Oracle Communications Diameter Signaling Router 8.6.0.0 Platform unquoted search path
2 months 3 weeks ago
A vulnerability, which was classified as very critical, was found in Oracle Communications Diameter Signaling Router 8.6.0.0. This affects an unknown part of the component Platform. The manipulation leads to unquoted search path.
This vulnerability is uniquely identified as CVE-2023-38408. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2023-38408 | Oracle Communications Policy Management 12.6.0.0 CMP unquoted search path
2 months 3 weeks ago
A vulnerability was found in Oracle Communications Policy Management 12.6.0.0. It has been classified as very critical. Affected is an unknown function of the component CMP. The manipulation leads to unquoted search path.
This vulnerability is traded as CVE-2023-38408. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2023-38408 | Oracle Enterprise Operations Monitor 5.0/5.1 Infrastructure unquoted search path
2 months 3 weeks ago
A vulnerability was found in Oracle Enterprise Operations Monitor 5.0/5.1. It has been declared as very critical. Affected by this vulnerability is an unknown functionality of the component Infrastructure. The manipulation leads to unquoted search path.
This vulnerability is known as CVE-2023-38408. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2023-48655 | MISP up to 2.4.175 Query Parameter IndexFilterComponent.php Privilege Escalation
2 months 3 weeks ago
A vulnerability was found in MISP up to 2.4.175. It has been rated as problematic. This issue affects some unknown processing of the file app/Controller/Component/IndexFilterComponent.php of the component Query Parameter Handler. The manipulation leads to Privilege Escalation.
The identification of this vulnerability is CVE-2023-48655. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-48848 | ureport 2.2.9 Path path traversal
2 months 3 weeks ago
A vulnerability was found in ureport 2.2.9 and classified as critical. This issue affects some unknown processing of the component Path Handler. The manipulation leads to path traversal.
The identification of this vulnerability is CVE-2023-48848. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2022-45135 | Apache Cocoon =2.2.x sql injection
2 months 3 weeks ago
A vulnerability classified as critical has been found in Apache Cocoon =2.2.x. Affected is an unknown function. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2022-45135. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
尽快提交!2024年网络安全“金帽子”年度评选活动报名进行中
2 months 3 weeks ago
为表彰在网安领域表现突出的企业及团队,进一步激发全行业创新活力,嘶吼于10月8日启动了2024年网络安全“金帽子”年度评选活动。截止到现在,“金帽子”年度评选报名时间已过半,望各企业单位尽快填写相关材料进行报名。
2024年网络安全“金帽子”年度评选
评选奖项
1、年度优秀安全产品
2、年度优秀行业解决方案
3、年度大模型创新技术
4、年度行业影响力
5、年度优秀团队品牌
6、年度创新成果典型案例
7、年度杰出安全服务商
评选规则
评选规则设置为大众投票占比40%,专家投票占比60%,同时系统对恶意刷票行为制定了预防机制,评选过程公开、客观、公正。
活动征集
征集时间:10月8日-10月22日
征集方式:根据年度奖项类目,参选企业可通过自荐、推荐、邀请等方式参与评选,在报名系统上按要求填写企业信息,进行参评。
征集入口:https://www.4hou.com/award-registration
PS:注册登录嘶吼账户后,可填写报名资料,各奖项申报名额有限,欲报从速。
如有其他问题咨询,请直接联系组委会,联系方式:
胡金鱼
Strengthening Kubernetes security posture with these essential steps
2 months 3 weeks ago
In this Help Net Security interview, Paolo Mainardi, CTO at SparkFabrik, discusses comprehensive strategies to secure Kubernetes environments from development through deployment. He focuses on best practices, automation, and continuous monitoring. Many security risks in Kubernetes originate from vulnerable container images. What are the key steps developers should take to ensure the security of container images before deploying them to a Kubernetes cluster? Securing container images is a pivotal task in maintaining a robust Kubernetes … More →
The post Strengthening Kubernetes security posture with these essential steps appeared first on Help Net Security.
Mirko Zorz
以babydriver为例的kernel-pwn解题一般过程
2 months 3 weeks ago
以babydriver为例的kernel-pwn解题一般过程
Microsoft 在 Windows Server 中弃用 PPTP 和 L2TP VPN 协议
2 months 3 weeks ago
Microsoft 已在未来版本的 Windows Server 中正式弃用点对点隧道协议 (PPTP) 和第 2 层隧道协议 (L2TP),并建议管理员切换到提供更高安全性的不同协议。
20 多年来,该企业一直使用 PPTP 和 L2TP VPN 协议来提供对企业网络和 Windows 服务器的远程访问。
然而,随着网络安全攻击和资源变得更加复杂和强大,协议变得越来越不安全。例如,PPTP 很容易受到捕获的身份验证哈希值的离线强力攻击,而 L2TP 不提供加密,除非与其他协议(如 IPsec)结合使用。
但是,如果 L2TP/IPsec 配置不正确,可能会引入使其容易受到攻击的弱点。
因此,Microsoft 建议用户转向更新的安全套接字隧道协议 (SSTP) 和 Internet 密钥交换版本 2 (IKEv2) 协议,这些协议可提供更好的性能和安全性。
微软表示:“此举是微软战略的一部分,旨在通过将用户过渡到安全套接字隧道协议(SSTP)和互联网密钥交换版本 2(IKEv2)等更强大的协议来增强安全性和性能。”
这些更新协议能提供相对来说的更加安全的加密、更快的连接速度和更好的可靠性,使它们更适合当今日益复杂的网络环境。
Microsoft 还分享了每个协议的以下优点:
SSTP 的优点
·强加密:SSTP使用SSL/TLS加密,提供安全的通信通道。
·防火墙穿越:SSTP可以轻松穿过大多数防火墙和代理服务器,确保无缝连接。
·易于使用:凭借 Windows 的本机支持,SSTP 的配置和部署非常简单。
IKEv2的优点
·安全性高:IKEv2支持强大的加密算法和稳健的认证方法。
·移动性和多宿主:IKEv2 对于移动用户特别有效,可在网络变化期间保持 VPN 连接。
·性能卓越:与传统协议相比,IKEv2 能够更快地建立隧道并降低延迟,提供卓越的性能。
微软强调,当一项功能被弃用时,并不意味着它被删除。相反,它只是不再处于积极开发状态,并且可能会从未来版本的 Windows 中删除。此弃用期可能会持续数月至数年,让管理员有时间迁移到建议的 VPN 协议。
作为此弃用的一部分,Windows RRAS Server(VPN 服务器)的未来版本将不再接受使用 PPTP 和 L2TP 协议的传入连接。但是,用户仍然可以进行传出 PPTP 和 L2TP 连接。
为了帮助管理员迁移到 SSTP 和 IKEv2,Microsoft 在 6 月份发布了支持公告,其中包含了有关如何配置这些协议的步骤。
胡金鱼