Aggregator

A vulnerability was found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9. It has been rated as critical. This issue affects some unknown processing of the component FileSystem API. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2024-24955. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9. Affected is an unknown function of the component FileSystem API. The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2024-24956. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9. Affected by this vulnerability is an unknown functionality of the component FileSystem API. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2024-24957. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9. Affected by this issue is some unknown functionality of the component FileSystem API. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2024-24958. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9. This affects an unknown part of the component FileSystem API. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2024-24959. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9 and classified as very critical. This vulnerability affects the function FileSelect of the component Programming Software Connection. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2024-24962. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in AutomationDirect Productivity 3000 P3-550E 1.2.10.9 and classified as very critical. This issue affects the function FileSelect of the component Programming Software Connection. The manipulation leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-24963. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in h2oai h2o-3 up to 3.40.0.4. It has been classified as problematic. This affects an unknown part. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2024-5550. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in certifi up to 2024.07.3. It has been classified as problematic. This affects an unknown part of the component Root Certificate Handler. The manipulation leads to insufficient verification of data authenticity. This vulnerability is uniquely identified as CVE-2024-39689. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Venki Supravizio BPM up to 18.1.1. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-46481. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in 7-zip. It has been classified as problematic. This affects an unknown part of the component Mark-of-the-Web. The manipulation leads to protection mechanism failure. This vulnerability is uniquely identified as CVE-2025-0411. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in notaryproject notation-go = 1.3.0-rc.1. Affected by this issue is some unknown functionality of the file /tmp. The manipulation leads to improper check or handling of exceptional conditions. This vulnerability is handled as CVE-2024-51491. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Selesta Visual Access Manager up to 4.42.1. This issue affects some unknown processing of the file /common/autocomplete.php. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2023-42250. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in HTML5 Video Player Plugin up to 2.5.35 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument heading leads to cross site scripting. This vulnerability is known as CVE-2024-13156. The attack can be launched remotely. There is no exploit available.

Протокол zkLend торгуется с хакером за свое будущее.

HackerNews 编译，转载请注明出处： 去中心化货币借贷平台 zkLend 遭受了一次安全漏洞攻击，攻击者利用智能合约漏洞窃取了 3600 枚以太坊，当时价值 950 万美元。 zkLend 是建立在 Starknet 上的去中心化货币市场协议，而 Starknet 是以太坊的第二层扩展解决方案。该平台允许用户存入、借入和借出各种资产。 此次攻击发生在昨天下午，zkLend 在 X 平台上警告称其遭受了一起网络安全事件。 据 EthSecurity Telegram 频道消息，攻击者利用了 zkLend 智能合约中的取整错误漏洞。 该频道的一篇帖子写道：“攻击者将‘lending_accumulator’操纵为一个非常大的数值 4.069297906051644020，然后利用 ztoken mint() 和 withdraw() 过程中的取整错误，反复存入 4.069297906051644021 wstETH，获得 2 wei，随后提取 4.069297906051644020*1.5 – 1 = 6.103946859077466029 wstETH，仅消耗 1 wei。” Starkware 是 Starknet 网络的开发者，其确认该漏洞并非 Starknet 技术的一部分，而是特定于应用程序的漏洞。 据 Cyvers 称，攻击者试图通过 RailGun 隐私协议洗钱，但由于协议政策被阻止。 zkLend 现已向黑客发出消息，表示如果对方归还 90% 的被盗以太坊（即 3300 枚 ETH），他们可以保留剩余的 10%，并且不会因此次攻击承担任何责任。 zkLend 在链上向黑客发送的消息中写道：“我们知道你对今天 zkLend 的攻击负责。你可以保留 10% 的资金作为白帽赏金，并将剩余的 90%，即 3300 枚 ETH，归还到这个以太坊地址：0xCf31e1b97790afD681723fA1398c5eAd9f69B98C。” “在收到转账后，我们同意放弃与此次攻击相关的所有责任。” “我们目前正在与安全公司和执法部门合作。如果我们没有在 2025 年 2 月 14 日世界协调时 00:00 之前收到你的回复，我们将采取下一步行动来追踪和起诉你。” 加密货币窃贼需在 2 月 13 日下午 7:00（美国东部标准时间）之前归还 90% 的被盗资金，之后 zkLend 将采取法律行动。 目前尚未收到黑客的任何回复，这在类似情况下通常是如此。尚未有威胁行为者被认定为此次攻击的幕后黑手。   消息来源：Bleeping Computer, 编译：zhongx；  本文由 HackerNews.cc 翻译整理，封面来源于网络；   转载请注明“转自 HackerNews.cc”并附上原文

开源安全的隐秘伤口

开源安全的隐秘伤口

开源安全的隐秘伤口

HackerNews 编译，转载请注明出处： 微软于本周二发布了针对其软件产品的安全更新，修复了63个漏洞，其中包括2个已被积极利用的漏洞。 这63个漏洞中，3个被评为严重（Critical），57个为重要（Important），1个为中等（Moderate），2个为低危（Low）。除此之外，微软还解决了自上个月补丁星期二更新以来，针对其基于Chromium的Edge浏览器的23个漏洞。 此次更新的重点是修复了两个被积极利用的漏洞： CVE-2025-21391（CVSS评分：7.1）——Windows存储权限提升漏洞 CVE-2025-21418（CVSS评分：7.8）——Windows辅助功能驱动程序（WinSock）权限提升漏洞 微软在关于CVE-2025-21391的警报中表示：“攻击者仅能删除系统上的特定文件。该漏洞不会泄露任何机密信息，但可能允许攻击者删除数据，导致服务不可用。” Action1公司总裁兼联合创始人Mike Walters指出，该漏洞可能与其他漏洞结合使用，从而提升权限并执行后续操作，复杂化恢复工作，攻击者也可能通过删除重要的取证资料来掩盖其行踪。 另一方面，CVE-2025-21418是涉及AFD.sys的权限提升漏洞，攻击者可利用该漏洞获得系统级权限（SYSTEM权限）。 值得注意的是，去年8月，Gen Digital披露了相同组件中的类似漏洞CVE-2024-38193，该漏洞已被朝鲜黑客组织Lazarus Group利用。2024年2月，微软也修复了一个影响AppLocker驱动程序（appid.sys）的Windows内核权限提升漏洞CVE-2024-21338，该漏洞也曾被Lazarus Group利用。 这些攻击链之所以引人注目，是因为它们超越了传统的“带入易受攻击驱动程序”（BYOVD）攻击，而是利用了Windows本地驱动程序中的安全漏洞，从而无需在目标环境中引入其他驱动程序。 目前尚不清楚CVE-2025-21418的滥用是否与Lazarus Group有关。美国网络安全和基础设施安全局（CISA）已将这两个漏洞列入已知被利用漏洞（KEV）目录，要求联邦机构在2025年3月4日前应用相关补丁。 此次更新中，微软解决的最严重漏洞是CVE-2025-21198（CVSS评分：9.0），一个高性能计算（HPC）包中的远程代码执行（RCE）漏洞。 微软表示：“攻击者可通过向目标头节点或Linux计算节点发送特制的HTTPS请求，进而执行远程代码，并能够在连接到目标头节点的其他集群或节点上执行代码。” 此外，另一个远程代码执行漏洞CVE-2025-21376（CVSS评分：8.1）影响Windows轻量目录访问协议（LDAP），攻击者可通过发送特制请求执行任意代码。不过，成功利用该漏洞需要攻击者在竞争条件下获胜。 Immersive Labs的网络安全工程师Ben McCarthy表示：“鉴于LDAP是Active Directory的核心组件，后者支撑着企业环境中的身份验证和访问控制，若被攻破，可能导致横向渗透、权限提升以及广泛的网络入侵。” 此外，更新还修复了一个NTLMv2哈希泄露漏洞CVE-2025-21377（CVSS评分：6.5），如果成功利用，攻击者可冒充目标用户进行身份验证。   消息来源：The Hacker News, 编译：zhongx；  本文由 HackerNews.cc 翻译整理，封面来源于网络；   转载请注明“转自 HackerNews.cc”并附上原文