Aggregator

A vulnerability, which was classified as problematic, was found in sinatra. Affected is an unknown function of the component Header Handler. The manipulation of the argument X-Forwarded-Host leads to reliance on untrusted inputs in a security decision. This vulnerability is traded as CVE-2024-21510. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Omron SYSMAC-SE2. This issue affects some unknown processing of the component Sysmac Studio. The manipulation leads to incorrect authorization. The identification of this vulnerability is CVE-2024-49501. The attack needs to be approached locally. There is no exploit available.

Security debt, defined for this report as flaws that remain unfixed for longer than a year, exists in 76% of organizations in the financial services sector, with 50% of organizations carrying critical security debt, according to Veracode. Financial sector apps accumulate more security debt With the average cost of a data breach in the financial industry estimated to be $6.08 million, the research comes at a critical time for one of the most highly targeted … More →

The post 50% of financial orgs have high-severity security flaws in their apps appeared first on Help Net Security.

Submit #434801 / VDB-282667

A vulnerability classified as very critical was found in Ricoh MFP. This vulnerability affects unknown code of the component Request Handler. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2024-47939. The attack can be initiated remotely. There is no exploit available.

Whenever I hear about a contribution to an open-source project, I always think it's a big deal. Earl

微软再次推迟受争议的 Windows Recall 功能。Recall 会每隔数秒进行一次屏幕截图，数据储存在本地用于实现可搜索数字记忆。但屏幕截图会将用户的敏感信息都保留下来，因此引发了隐私安全方面的广泛争议。微软此前计划在 10 月让 Windows 测试者测试 Recall，但现在软件巨人表示需要更多时间准备该功能，更多时间去完善体验。Windows 高级产品经理 Brandon LeBlanc 表示 Recall 将于 12 月在 Copilot Plus PC 上向 Windows Insiders 提供预览。

In this Help Net Security interview, Mike McNeil, CEO at Fleet, talks about the security risks posed by unmanaged mobile devices and how mobile device management (MDM) solutions help address them. He also discusses employee resistance to MDM and how open-source transparency can build trust. Lastly, McNeil shares insights on managing devices in remote locations and what’s next for MDM technology. What are some of the biggest threats of unmanaged mobile devices, and how does … More →

The post How open-source MDM solutions simplify cross-platform device management appeared first on Help Net Security.

Maestro: Abusing Intune for Lateral Movement Over C2If I have a command and control (C2) agent

大模型时代，我估计大模型追在意的还是大模型“幻觉”问题，但是前面（2024.9.17）看到一个研究的结论是："数学上证明，幻觉是不可避免地，也是不可能消除的"。https://arxiv.org/ab

OpenPaX is an open-source kernel patch that mitigates common memory safety errors, re-hardening systems against application-level memory safety attacks using a simple Linux kernel patch. It’s available under the same GPLv2 license terms as the Linux kernel. “We are pleased to be able to bring this to the industry at large and as an integrated offering for our customers with Edera Protect,” said Ariadne Conill, distinguished engineer at Edera and maintainer of Alpine Linux. “Until … More →

The post OpenPaX: Open-source kernel patch that mitigates memory safety errors appeared first on Help Net Security.

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Amol Dosanjh of Trend Micro' was reported to the affected vendor on: 2024-11-01, 17 days ago. The vendor is given until 2025-03-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

In the October 2024 survey we received responses from 1,131,068,688 sites across 271,7

Although most organizations use emails with built-in security features that filter out suspicious messages, criminals always find a way to bypass these systems. With the development of AI technology, phishing is becoming increasingly difficult to recognize, allowing them to circumvent security measures. While most attempts do not succeed, it only takes one to cause significant damage to a company’s operations. Mick Leach, Field CISO at Abnormal Security, discusses why the automotive industry is the new … More →

The post Threat actors are stepping up their tactics to bypass email protections appeared first on Help Net Security.

A vulnerability was found in Beaver Builder Plugin up to 2.8.4.2 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Button Widget. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-9505. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Arconix Shortcodes Plugin up to 2.1.13 on WordPress. It has been classified as problematic. Affected is the function box of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-10226. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in lunary-ai lunary up to 1.4.9. This affects the function extractFirstName of the file /v1/users/send-verification of the component API. The manipulation leads to failure to sanitize special elements into a different plane (special element injection). This vulnerability is uniquely identified as CVE-2024-7472. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in gaizhenbiao ChuanhuChatGPT up to 20240410. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to file inclusion. The identification of this vulnerability is CVE-2024-5823. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, was found in langchain-ai langchainjs up to 0.3.0. Affected is the function GraphCypherQAChain. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-7042. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.