Aggregator

监测发现，APT-C-36（盲眼鹰）从2024年10月份起使用更加多样和复杂的攻击手段，持续针对哥伦比亚地区开展攻击活动

监测发现，APT-C-36（盲眼鹰）从2024年10月份起使用更加多样和复杂的攻击手段，持续针对哥伦比亚地区开展攻击活动

监测发现，APT-C-36（盲眼鹰）从2024年10月份起使用更加多样和复杂的攻击手段，持续针对哥伦比亚地区开展攻击活动

监测发现，APT-C-36（盲眼鹰）从2024年10月份起使用更加多样和复杂的攻击手段，持续针对哥伦比亚地区开展攻击活动

监测发现，APT-C-36（盲眼鹰）从2024年10月份起使用更加多样和复杂的攻击手段，持续针对哥伦比亚地区开展攻击活动

APT-C-36  盲眼鹰APT-C-36（盲眼鹰）是一个疑似来自南美洲的APT组织，主要目标位于哥伦比亚境内，以及南美洲的一些国家和地区，如厄瓜多尔、智利和巴拿马等。该组织自2018年被发现以来，持

A vulnerability has been found in Red Hat Keycloak, JBoss Enterprise Application Platform and JBoss Enterprise Application Platform Expansion Pack and classified as problematic. This vulnerability affects unknown code of the component JGroups Replication Configuration Handler. The manipulation leads to cleartext transmission of sensitive information. This vulnerability was named CVE-2024-10973. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in NICMx Fort up to 1.6.4. This affects an unknown part of the component Manifest Handler. The manipulation of the argument manifestNumber/thisUpdate leads to incorrect comparison. This vulnerability is uniquely identified as CVE-2024-56170. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Elastic Elasticsearch up to 8.16.1. Affected by this issue is some unknown functionality of the component Query Handler. The manipulation leads to incorrect authorization. This vulnerability is handled as CVE-2024-12539. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in Red Hat OpenShift Container Platform 4. Affected by this vulnerability is an unknown functionality of the component ose-olm-catalogd-container. The manipulation leads to resource consumption. This vulnerability is known as CVE-2024-12698. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in NICMx Fort up to 1.6.4. Affected is an unknown function of the component RPKI Data Handler. The manipulation leads to an unknown weakness. This vulnerability is traded as CVE-2024-56169. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in LifterLMS Plugin up to 7.8.5 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to missing authorization. This vulnerability was named CVE-2024-12596. The attack can be initiated remotely. There is no exploit available.

PbootCMS在国内有非常大的客户使用量，属于国内最流行的企业官网建站程序。

IntroductionIn the previous blog post, we have dissected the Lorex 2K IP Camera f

作为 The BMJ 期刊讽刺圣诞特刊的一部分，专家警告尽管迪士尼公主都有着幸福的结局，但在现实世界中她们都面临着严重的健康危害。以白雪公主为例，作为恶毒继母的继女，她的社交机会极其有限，

作为 The BMJ 期刊讽刺圣诞特刊的一部分，专家警告尽管迪士尼公主都有着幸福的结局，但在现实世界中她们都面临着严重的健康危害。以白雪公主为例，作为恶毒继母的继女，她的社交机会极其有限，这使她面临心血管疾病、抑郁、焦虑和早逝的风险。幸运的是，白雪公主遇到了七个小矮人，他们保护她远离孤独的危险，但随后她吃了一个毒苹果，这表明了对白雪公主来说，“一天一个苹果，医生远离我”这句话的失败。《阿拉丁》中的茉莉公主也有孤独对健康造成影响的风险，因为她在王宫的围墙内长大，没有任何朋友。与此同时，她的宠物老虎 Rajah 不仅有人畜共患感染的风险，它的自然本能可能会导致危险和潜在的致命情况。

A vulnerability was found in PHPGurukul Online Birth Certificate System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /user/certificate-form.php. The manipulation leads to basic cross site scripting. The identification of this vulnerability is CVE-2024-55059. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in PHPGurukul Online Birth Certificate System 1.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to weak password requirements. This vulnerability was named CVE-2024-55057. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Databricks JDBC Driver up to 2.6.39. It has been classified as critical. This affects an unknown part of the component JNDI Handler. The manipulation of the argument krbJAASFile leads to injection. This vulnerability is uniquely identified as CVE-2024-49194. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Aiven-Open pghoard and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to path traversal. This vulnerability is handled as CVE-2024-56142. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.