Aggregator

Почему Zello настаивает на смене паролей и что стоит за уведомлением.

接下来的重点，是规模化和商业化。

This a weird post; it doesn’t give many answers and it pretty much focuses on describing results

图解｜我国数据出境合规指引

Intel平台的创建是为了填补可用于跟踪新出现的漏洞情报资源空白

Recent reports from Tor users in Russia indicate an escalation in online censorship with the goal of

         Dynamic Host Configuration Protocol (DHCP) 是一种用于自动为网络中的设备分配 IP ...

我们监控到BNB Smart Chain上的一起攻击事件，被攻击的项目为DCF，本次攻击共造成约440,000 USD的损失。

全流程

Всего за три месяца хакерам удалось развернуть крупнейшую сеть скрытого криптомайнинга.

alphatronBot是一款基于p2p协议的后门程序，拥有远控功能，并且会下发特定的payload。该恶意软件通过PubSub聊天室的形式进行控制，后门内置了700多个受感染的p2p C2节点，影响linux和windows双平台。

A vulnerability, which was classified as problematic, was found in Undertow. Affected is an unknown function of the component HTTP2 Handler. The manipulation leads to invocation of process using visible sensitive information. This vulnerability is traded as CVE-2021-3859. Access to the local network is required for this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Oracle Enterprise Manager Base Platform 13.4.0.0 and classified as critical. Affected by this issue is some unknown functionality of the component Application Service Level Management. The manipulation leads to deserialization. This vulnerability is handled as CVE-2021-4104. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in Oracle Service Bus 12.2.1.4.0. Affected is an unknown function of the component Web Console Design. The manipulation leads to deserialization. This vulnerability is traded as CVE-2021-4104. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as critical was found in Oracle Communications Order and Service Management 7.4.0/7.4.1. Affected by this vulnerability is an unknown functionality of the component Security. The manipulation leads to deserialization. This vulnerability is known as CVE-2021-4104. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in Oracle Retail Allocation 14.1.3.2/15.0.3.1/16.0.3/19.0.1. Affected is an unknown function of the component General. The manipulation leads to deserialization. This vulnerability is traded as CVE-2021-4104. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Oracle Utilities Testing Accelerator 6.0.0.1.1/6.0.0.2.2/6.0.0.3.1 and classified as critical. This vulnerability affects unknown code of the component Tools. The manipulation leads to deserialization. This vulnerability was named CVE-2021-4104. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.