Aggregator

A vulnerability described as problematic has been identified in Apache PDFbox up to 2.0.23. This affects an unknown part of the component PDF File Handler. Such manipulation leads to infinite loop. This vulnerability is traded as CVE-2021-31812. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in Oracle Communications Messaging Server 8.1. It has been rated as critical. Affected is an unknown function of the component Apache PDFBox. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2021-31812. Local access is required to approach this attack. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Oracle Banking Corporate Lending Process Management 14.2/14.3/14.5. It has been declared as critical. This impacts an unknown function of the component Apache PDFBox. Such manipulation leads to denial of service. This vulnerability is referenced as CVE-2021-31812. The attack can only be performed from a local environment. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Banking Credit Facilities Process Management 14.2/14.3/14.5. It has been rated as critical. Affected is an unknown function of the component Apache PDFBox. Performing manipulation results in denial of service. This vulnerability is identified as CVE-2021-31812. The attack is only possible with local access. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, has been found in SquirrelMail up to 1.2.5. This issue affects some unknown processing of the component magicHTML. The manipulation leads to HTML injection. This vulnerability is uniquely identified as CVE-2002-2086. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Caucho Technology Resin 2.1.1/2.1.2. It has been classified as problematic. This affects an unknown function of the component MS DOS Device Name. Performing manipulation results in information disclosure (Path). This vulnerability is identified as CVE-2002-2090. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Deception Decfingerd 0.7. It has been declared as critical. This impacts an unknown function. Executing manipulation of the argument Username can lead to memory corruption. This vulnerability is tracked as CVE-2002-2091. The attack can be launched remotely. No exploit exists.

A vulnerability identified as problematic has been detected in Joe Testa Hellbent 01. Affected by this issue is some unknown functionality of the component 403 Error Page. This manipulation causes information disclosure (Path). This vulnerability is registered as CVE-2002-2094. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as problematic has been found in Joe Testa Hellbent 0.1. This affects an unknown part of the file hellbent.prefs. Such manipulation leads to information disclosure (File). This vulnerability is documented as CVE-2002-2095. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in Apache HTTP Server up to 1.3.23 and classified as problematic. Affected is an unknown function of the component Log File Handler. Executing manipulation of the argument Hostname can lead to authentication bypass by spoofing. The identification of this vulnerability is CVE-2002-2103. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.

GCL子公司2Game Digital与KuCoin Pay合作，接受实时安全加密支付服务。

说不到一块儿，不一块儿说便是

当前环境出现异常状态，需完成验证后方可继续访问相关内容或服务。

Microsoft выпустила исправление, которое ничего не исправило.

A vulnerability identified as critical has been detected in Crystal Art FTP Client 2.8. This issue affects some unknown processing of the component FTP Client. This manipulation causes memory corruption. This vulnerability is registered as CVE-2004-1327. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

文章讨论了浏览器和passkey的安全性问题，指出passkey可能不如想象中安全，并提到浏览器本身存在许多安全隐患。

Там, где квант встречает кремний, начинается новая эра вычислений.

Anthropic推出专为高校设计的AI助手Claude for Education，支持学术和校园运营的安全整合。其学习模式通过苏格拉底对话促进批判性思维，并已部署于多所大学，与多家机构合作提升教育生产力。

Discover Claude for Education, Anthropic’s AI assistant designed for universities, promoting critical thinking and enhancing academic operations. Learn mo

The post Anthropic Launches Claude: AI Chatbot for Higher Education appeared first on Security Boulevard.