Aggregator

白泽团队送你寒冬的第一份温暖~

Executive SummarySentinelLabs has observed a suspected DPRK threat actor targeting Cryp

Каверзные вопросы о развитии младенцев и нашей природе.

正在调查中

速修复

0x0xba$e Allegedly is Selling Data of Hospital Universitario Cli­nica San Rafael

Nejoum Al Jazeera Has Been Claimed a Victim to DARKVAULT Ransomware

Nokia's investigation of recent claims of a data breach found that the source code leaked on a hacker forum belongs to a third party and company and customer data has not been impacted. [...]

探讨如何通过新技术、新策略构建全面智能、高效的安全治理体系。

标准引领高质量发展，绿盟科技助力软件供应链安全标准化建设。

对七大行业进行供需两端的市场及技术趋势分析，今天走进金融行业。

A vulnerability was found in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2020-11919. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Logpoint up to 7.4.x. It has been classified as problematic. This affects an unknown part of the component SOAR. The manipulation leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2024-48951. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Espressif ESP-IDF 5.3.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Channel Packet Handler. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-51428. Access to the local network is required for this attack. There is no exploit available.

A vulnerability has been found in pglombardo PasswordPusher up to 1.48.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-51989. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in devtron up to 0.7.1. Affected is an unknown function of the file /orchestrator/user of the component CreateUser API. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-45794. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Logpoint up to 7.4.x. This issue affects some unknown processing of the component EventHub Collector Setup. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2024-48954. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.