Aggregator

CVE-2022-33879 | Apache Tika up to 1.28.3/2.4.0 Incomplete Fix StandardsExtractingContentHandler incorrect regex (Nessus ID 237252)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as problematic was found in Apache Tika up to 1.28.3/2.4.0. Affected by this vulnerability is the function StandardsExtractingContentHandler of the component Incomplete Fix. The manipulation leads to incorrect regular expression. This vulnerability is known as CVE-2022-33879. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2006-6062 | Apple Mac OS X Server 10.4.8 memory corruption (EDB-29144 / Nessus ID 24811)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Apple Mac OS X Server 10.4.8. This issue affects some unknown processing. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2006-6062. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Crooks stole over $200 million from crypto exchange Cetus Protocol

Security Affairs
8 months 2 weeks ago
Cetus Protocol reported a $223 million crypto theft and is offering to drop legal action if the stolen funds are returned. Last week, threat actors stole about $223 million from decentralized crypto exchange Cetus. The platform was paused during the investigation and later confirmed the cyber heist. The company confirmed that it has successfully paused […]
Pierluigi Paganini

巴基斯坦分配 2000 MW 电力用于挖掘比特币和 AI 数据中心

Solidot
8 months 2 weeks ago
巴基斯坦能源部门面临高电价和电力过剩这两大挑战。为了将剩余电力货币化,以及创造高科技就业机会并吸引外国投资,巴基斯坦财政部宣布了一项计划,将分配 2000 MW 电力用于为比特币挖矿和 AI 数据中心供电。财政部表示这是更广泛的多阶段数字基础设施建设的第一阶段。

CVE-2011-5227 | Enterasys Netsight 4.1.0.79 nssyslogd.exe memory corruption (EDB-23887 / ID 12688)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as very critical has been found in Enterasys Netsight 4.1.0.79. This affects an unknown part of the file nssyslogd.exe. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2011-5227. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

普京表态要封锁微软和 Zoom 的服务

Solidot
8 months 2 weeks ago
俄罗斯总统普京周一表示,外国服务提供商如微软和 Zoom 的行为违反了俄罗斯利益,应该受到限制。在俄罗斯入侵乌克兰之后,西方国家对俄罗斯进行了制裁,大部分西方企业都撤离了俄罗斯,如麦当劳就出售了其在俄业务。微软和 Zoom 是少数仍然向俄罗斯提供有限服务的美国公司。普京没有进一步说明是否会采取行动封锁微软和 Zoom 的服务,他强调要发展本国替代软件解决方案。

Managed ad