Aggregator

A vulnerability classified as problematic has been found in Apple Watch OS 1.0. Affected is an unknown function of the component Kernel. The manipulation leads to race condition. This vulnerability is traded as CVE-2015-1099. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Apple MacOS X up to 10.10.2. This vulnerability affects unknown code of the component Kernel. The manipulation leads to denial of service (Shutdown). This vulnerability was named CVE-2015-1141. Attacking locally is a requirement. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in code-projects Farmacia 1.0. This affects an unknown part of the file /visualizar-produto.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2024-12007. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Submit #454787 / VDB-255206

Submit #454715 / VDB-286491

Submit #454651 / VDB-275112

Weekly Update 428

A vulnerability classified as very critical has been found in Davide Libenzi XMail 0.66. Affected is the function cfgfileget/domaindel of the component CTRLServer. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2001-0192. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in xloadimage 4.1. It has been classified as critical. Affected is an unknown function of the component FACES Image Handler. The manipulation of the argument Firstname/Lastname leads to memory corruption. This vulnerability is traded as CVE-2001-0775. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

在这个信息爆炸的时代，开源情报已成为一种潮流和趋势。越来越多的人开始关注开源，参与到开源情报的行列中来。

A vulnerability was found in Red Hat Openstack 3.0. It has been classified as critical. Affected is an unknown function. The manipulation leads to code injection. This vulnerability is traded as CVE-2013-2121. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle JRE 1.6.0/1.7.0. It has been classified as very critical. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2012-1533. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

OpenWrt 项目发布了专门为其量身打造的路由器 OpenWrt One，售价 89 美元。OpenWrt One 旨在尊重用户的软件自由，永远不会锁定，也永远不会变砖，用户可以自由修改、改造或修复。路由器本身是与 Banana Pi 合作制造的，使用了联发科的 MT7981B SoC，Wi-Fi 为联发科 MT7976C，1GB DDR4 内存，128 MiB SPI NAND + 4 MiB SPI NOR flash，两个以太网端口（2.5 GbE 和 1 GbE）、一个 USB 主机端口、用于 NVMe SSD 或类似设备的 M.2 2042 以及 mikroBUS 扩展头。产品通过阿里巴巴的 AliExpress 购买。

Что изменилось в регулировании персональной информации?

A vulnerability was found in CollabNet ScrumWorks 1.8.4. It has been classified as problematic. Affected is an unknown function of the file server/scrumworks/data/hypersonic/scrumworks.log. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2011-0410. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Postfix. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2011-0411. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.