INC
You must login to view this content
Aggregator
Anubis Ransomware Lists Disneyland Paris as New Victim
5 months 3 weeks ago
Anubis ransomware group claims a 64GB data breach at Disneyland Paris, leaking some engineering files and attraction plans via its dark web site.
Waqas
Hackers Target 700+ ComfyUI AI Image Generation Servers to Spread Malware
5 months 3 weeks ago
China’s National Cybersecurity Notification Center has issued an urgent warning about critical vulnerabilities in ComfyUI, a widely used image-generation framework for large AI models. These flaws, already under active exploitation by hacker groups, have compromised at least 695 servers worldwide, according to threat intelligence from XLab. The attackers are deploying a sophisticated backdoor named “Pickai,” […]
The post Hackers Target 700+ ComfyUI AI Image Generation Servers to Spread Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
CVE-2023-52828 | Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2 bpf do_something stack-based overflow (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2. It has been classified as critical. This affects the function do_something of the component bpf. The manipulation leads to stack-based buffer overflow.
This vulnerability is uniquely identified as CVE-2023-52828. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-52826 | Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2 tpg110_get_modes null pointer dereference (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2. It has been declared as critical. This vulnerability affects the function tpg110_get_modes. The manipulation leads to null pointer dereference.
This vulnerability was named CVE-2023-52826. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-6932 | Linux Kernel up to 6.6.x IPv4 net/ipv4/igmp.c igmp_start_timer use after free (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.6.x. Affected by this vulnerability is the function igmp_start_timer of the file net/ipv4/igmp.c of the component IPv4 Handler. The manipulation leads to use after free.
This vulnerability is known as CVE-2023-6932. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-52847 | Linux Kernel up to 6.6.1 bttv use after free (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.1. It has been rated as problematic. This issue affects some unknown processing of the component bttv. The manipulation leads to use after free.
The identification of this vulnerability is CVE-2023-52847. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-52855 | Linux Kernel up to 6.6.1 _dwc2_hcd_urb_enqueue null pointer dereference (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.1. This affects the function _dwc2_hcd_urb_enqueue. The manipulation leads to null pointer dereference.
This vulnerability is uniquely identified as CVE-2023-52855. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26635 | Linux Kernel up to 6.7.2 llc_conn_handler initialization of resource (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.7.2. It has been classified as problematic. Affected is the function llc_conn_handler. The manipulation leads to missing initialization of resource.
This vulnerability is traded as CVE-2024-26635. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26673 | Linux Kernel up to 6.7.3 Netfilter access control (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.7.3. This issue affects some unknown processing of the component Netfilter. The manipulation leads to improper access controls.
The identification of this vulnerability is CVE-2024-26673. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26883 | Linux Kernel up to 6.8.1 bpf roundup_pow_of_two buffer overflow (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability has been found in Linux Kernel up to 6.8.1 and classified as critical. Affected by this vulnerability is the function roundup_pow_of_two of the component bpf. The manipulation leads to buffer overflow.
This vulnerability is known as CVE-2024-26883. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26825 | Linux Kernel up to 6.7.5 NFC rx_data_reassembly allocation of resources (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.7.5. Affected is the function rx_data_reassembly of the component NFC. The manipulation leads to allocation of resources.
This vulnerability is traded as CVE-2024-26825. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26884 | Linux Kernel up to 6.8.1 bpf roundup_pow_of_two buffer overflow (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.8.1. It has been classified as critical. This affects the function roundup_pow_of_two of the component bpf. The manipulation leads to buffer overflow.
This vulnerability is uniquely identified as CVE-2024-26884. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26955 | Linux Kernel up to 6.8.2 nilfs2 submit_bh_wbc buffer overflow (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.8.2. Affected is the function submit_bh_wbc of the component nilfs2. The manipulation leads to buffer overflow.
This vulnerability is traded as CVE-2024-26955. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-26956 | Linux Kernel up to 6.8.2 submit_bh_wbc return value (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability classified as problematic was found in Linux Kernel up to 6.8.2. Affected by this vulnerability is the function submit_bh_wbc. The manipulation leads to unchecked return value.
This vulnerability is known as CVE-2024-26956. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-35936 | Linux Kernel up to 6.8.5 btrfs_relocate_sys_chunks infinite loop (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.8.5. It has been classified as critical. This affects the function btrfs_relocate_sys_chunks. The manipulation leads to infinite loop.
This vulnerability is uniquely identified as CVE-2024-35936. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-27044 | Linux Kernel up to 6.8.1 display dcn10_set_output_transfer_func null pointer dereference (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability has been found in Linux Kernel up to 6.8.1 and classified as critical. This vulnerability affects the function dcn10_set_output_transfer_func of the component display. The manipulation leads to null pointer dereference.
This vulnerability was named CVE-2024-27044. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-35998 | Linux Kernel up to 6.1.89/6.6.29/6.8.8 smb3 cifs_sync_mid_result deadlock (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.1.89/6.6.29/6.8.8. It has been declared as critical. Affected by this vulnerability is the function cifs_sync_mid_result of the component smb3. The manipulation leads to deadlock.
This vulnerability is known as CVE-2024-35998. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-36006 | Linux Kernel up to 6.8.8 spectrum_acl_tcam.c list_first_entry information disclosure (Nessus ID 239742)
5 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.8.8. Affected is the function list_first_entry of the file drivers/net/ethernet/mellanox/mlxsw/spectrum_acl_tcam.c. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2024-36006. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Cyberattack Disrupts Russian Dairy Supply Chain by Targeting Animal Certification System
5 months 3 weeks ago
In a Russia’s dairy supply chain, a suspected cyberattack has targeted the Mercury component of the national veterinary certification system, forcing it into emergency operation mode. This critical system, integral to the processing of veterinary accompanying documents, ensures the traceability and safety compliance of animal-derived products, including dairy. The attack has temporarily halted normal operations, […]
The post Cyberattack Disrupts Russian Dairy Supply Chain by Targeting Animal Certification System appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra