Aggregator

Schneider Electricが提供する複数の製品には、複数の脆弱性が存在します。

AVEVAが提供するPI Integratorには、複数の脆弱性が存在します。

Santesoft LTDが提供するSante PACS Serverには、複数の脆弱性が存在します。

A vulnerability was found in Linux Kernel up to 6.1.141/6.6.93/6.12.33/6.15.2/6.16-rc1 and classified as critical. Affected by this issue is the function mgmt_remove_adv_monitor_complete of the component Bluetooth. The manipulation leads to use after free. This vulnerability is handled as CVE-2025-38118. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in IEEE P802.11-REVme up to D7.0. Affected by this issue is some unknown functionality of the component Mesh Network Handler. The manipulation leads to injection. This vulnerability is handled as CVE-2025-27558. The attack can only be done within the local network. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.16-rc1. Affected by this issue is the function cm_chan_msg_send of the file drivers/rapidio/rio_cm.c. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2025-38090. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

文章描述了错误代码521的原因及其解决方法。

作者：Iyiola E. Olatunji, Franziska Boenisch, Jing Xu, Adam Dziedzic 译者：知道创宇404实验室翻译组 原文链接：https://arxiv.org/html/2508.04894v1 摘要 大型语言模型 (LLMs) 越来越多地与图结构数据集成，用于执行像节点分类这样的任务，这一领域传统上主要由图神经网络 (GNNs) 占据。尽...

A self-proclaimed Ukrainian Web3 team targeted a community member during an interview’s first round by instructing them to clone and run a GitHub repository named EvaCodes-Community/UltraX. Suspecting foul play, the individual contacted the SlowMist security team, who conducted a thorough analysis and uncovered malicious components embedded within the project’s dependencies. With consent, SlowMist issued a […]

The post Malicious npm Package Lures Job Seekers and Exfiltrates Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Один бит из 2024 года — и ваш DevOps в слезах.

Currently trending CVE - Hype Score: 15 - 7-Zip before 25.01 does not always properly handle symbolic links during extraction.

Currently trending CVE - Hype Score: 21 - External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network.

Currently trending CVE - Hype Score: 23 - VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrative privileges on a virtual machine with VMXNET3 virtual network adapter may exploit this issue to execute code on the ...

Currently trending CVE - Hype Score: 24 - RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a ...

《DeepSeek赋能职场办公与科学研究开发实践》震撼上市！

黑客入侵Allianz Life的Salesforce系统，泄露280万条敏感记录，涉及客户和商业伙伴的个人信息。攻击者利用社会工程手段进入第三方CRM系统，获取大量数据并声称与ShinyHunters组织有关。Allianz Life已通知FBI并开始联系受影响者提供支持，调查仍在进行中。

Hackers leaked 2.8M sensitive records from Allianz Life, exposing data on business partners and customers in ongoing Salesforce data theft attacks. Hackers leaked 2.8 million sensitive records of US insurance giant Allianz Life, exposing data on business partners and customers as part of ongoing Salesforce data theft attacks. At the end of July, Allianz Life […]

一位用户在 Reddit 的 HowToHack 板块发帖，表示怀疑伴侣不忠，并寻求帮助以远程调查此事的可能性。

Terraform Labs创始人Do Kwon承认共谋欺诈和电信欺诈罪。UST币值崩溃导致LUNA几乎归零，客户损失400亿美元。Do Kwon被引渡美国受审，面临最高12年监禁。

Terraform Labs 创始人 Do Kwon 在美国联邦法院承认犯有共谋欺诈和电信欺诈罪。Terraform 发行了被称为 Terra USD（UST）的算法稳定币，2022 年 5 月 UST 的币值崩溃关联代币 LUNA 几乎跌至一文不值，客户损失了 400 亿美元。Do Kwon 是韩国公民，他的公司总部位于新加坡，他于 2023 年 3 月在黑山被捕，2024 年底被引渡到美国受审。他面临最高 25 年监禁，但检方同意只要认罪他的刑期最高不超过 12 年。Do Kwon 承认做出了虚假和误导性的陈述，犯有错误。