Aggregator

HPE is investigating claims of data breach by hacker IntelBroker, who offered stolen files for sale

Откровения Сэма Альтмана о будущем и воспитании ребенка.

A Threat Actor Claims to be Selling Access of DPIS (Departmental Personnel Information System)

Building on EO 14028, EO 14144 advances U.S. cybersecurity with actionable steps for NHI security and secrets management. Learn what this means for you.

The post Executive Order 14144 on Cybersecurity: Building on 2021’s Foundation with Advanced NHI Security appeared first on Security Boulevard.

A vulnerability has been found in 389-ds-base and classified as problematic. Affected by this vulnerability is the function sync_repl of the component Query Handler. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2021-3514. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Red Hat 389 Directory Server and classified as problematic. Affected by this issue is some unknown functionality of the component LDAP Service. The manipulation leads to denial of service. This vulnerability is handled as CVE-2022-0918. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in 389 Directory Server 389. It has been classified as critical. This affects an unknown part of the component Expired Password Handler. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2022-0996. Access to the local network is required for this attack. There is no exploit available.

A vulnerability was found in 389-ds-base. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Search Request Parser. The manipulation leads to use after free. This vulnerability is known as CVE-2021-4091. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability classified as critical has been found in 389-ds-base. This affects an unknown part of the component Asterisk Import Handler. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2021-3652. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.9 and classified as critical. This issue affects some unknown processing of the file adicionar_cor.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-23219. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in LabRedesCefetRJ WeGIA up to 3.2.9 and classified as critical. This vulnerability affects unknown code of the file adicionar_especie.php. The manipulation leads to sql injection. This vulnerability was named CVE-2025-23218. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in LabRedesCefetRJ WeGIA up to 3.2.9. This affects an unknown part of the file adicionar_raca.php. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2025-23220. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

2024 年美国夏威夷莫纳克亚天文台一座气象站测量的大气二氧化碳水平增长了 3.58 ppm，这是自 1958 年有记录以来的最大增幅。创纪录的增长部分是由于化石燃料燃烧和其他人类行为产生的二氧化碳排放量在 2024 年创下历史新高。此外在长期变暖的基础上，厄尔尼诺天气模式推动了全球高温纪录，从而引发了大量野火。首次对大气二氧化碳水平的测量正是在莫纳克亚天文台进行的。而现在通过卫星观测可以直接测量大气二氧化碳的全球平均水平。根据哥白尼大气监测局的数据，这一数字在 2024 年增长了 2.9ppm。这虽然不是一个纪录，却是开展卫星观测以来最大的增幅之一。

A vulnerability, which was classified as problematic, has been found in PwnDoc. Affected by this issue is some unknown functionality of the component POST Request Handler. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2025-23044. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in vitejs vite up to 4.5.5/5.4.11/6.0.8. Affected by this vulnerability is an unknown functionality. The manipulation leads to origin validation error. This vulnerability is known as CVE-2025-24010. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A Threat Actor is Allegedly Selling the Data of Speedio