Aggregator

A vulnerability classified as critical was found in Splunk Enterprise and Cloud Platform. Affected by this vulnerability is an unknown functionality of the component Notifications Handler. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-36989. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Livemesh Addons for Elementor Plugin up to 8.3.7 on WordPress. This affects an unknown part. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2024-37547. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability classified as critical has been found in Microsoft Windows. This affects an unknown part of the component Graphics. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-38085. Attacking locally is a requirement. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as very critical, was found in HPE 3PAR Service Processor up to 5.1.1. This affects an unknown part. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2024-22442. It is possible to initiate the attack remotely. There is no exploit available.

科技产业资讯

The data breach exposed more than 10m customer conversations from an AI call center platform in the Middle East

Как устаревшие протоколы ставят под удар заводы и фабрики.

主站 分类 漏洞 工具 极客

SQLMap tamper scripts are widely used to bypass Web Application Firewalls (WAFs) during SQL injection attacks. Each script alters the SQL payload to avoid detection by WAFs from vendors like FortiWAF, F5, Barracuda, Akamai, Cloudflare, and Imperva. T...

Microsoft is investigating an Outlook bug causing desktop app crashes, high system resource usage, and preventing users from logging into their accounts. [...]

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. [...]

问卷调查 | 2024年我国企业API安全风险态势及防护现状 日期：2024年10月10日 阅：48

9项网络安全国家标准正式发布，2025年4月1日起施行；日本科技巨头卡西欧遭网络攻击，导致部分业务系统中断 | 牛览 日期：2024年10月10日

A vulnerability, which was classified as very critical, was found in ESRI ArcMap 9.0. Affected is an unknown function. The manipulation leads to code injection. This vulnerability is traded as CVE-2012-1661. It is possible to launch the attack remotely. Furthermore, there is an exploit available.