Aggregator

A vulnerability was found in Oracle Communications Session Report Manager up to 8.2.5.0 and classified as critical. This issue affects some unknown processing of the component Apache Commons Compress. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2021-36090. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Communications Session Route Manager up to 8.2.5.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability is handled as CVE-2021-36090. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Primavera Gateway up to 17.12.11/18.8.12/19.12.11/20.12.7 and classified as critical. Affected by this issue is some unknown functionality of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability is handled as CVE-2021-36090. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Primavera Unifier up to 20.12. It has been classified as critical. This affects an unknown part of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2021-36090. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Banking Platform 2.6.2/2.7.1/2.9.0/2.12.0. It has been declared as critical. This vulnerability affects unknown code of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability was named CVE-2021-36090. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

simple_chat 能让 Flutter 开发者省去很多麻烦，专注业务逻辑，而不是陷在复杂的聊天框架里。

simple_chat 能让 Flutter 开发者省去很多麻烦，专注业务逻辑，而不是陷在复杂的聊天框架里。

simple_chat 能让 Flutter 开发者省去很多麻烦，专注业务逻辑，而不是陷在复杂的聊天框架里。

simple_chat 能让 Flutter 开发者省去很多麻烦，专注业务逻辑，而不是陷在复杂的聊天框架里。

Fortanix announced new capabilities to its data encryption and key management platform. Even as organizations struggle to manage the rising costs and complexity of data security, advances in AI and quantum computing will render current protections obsolete. Quantum computers will be able to break most widely used public key cryptographic algorithms, putting long-term sensitive data at risk, and recent innovations in the field signal it could happen sooner than expected—customer information, PII, employee records, and … More →

The post Fortanix protects enterprises from AI and quantum computing threats appeared first on Help Net Security.

RSpec metadata helps Red Canary’s engineers generate clean and consistent tests in our Ruby on Rails application

HaveIbeenPwned (HIBP) website has significantly expanded its database with hundreds of millions of newly compromised credentials extracted by hackers though infostealer logs.

A vulnerability was found in Oracle Communications Messaging Server 8.1 and classified as critical. Affected by this issue is some unknown functionality of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability is handled as CVE-2021-36090. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle Communications Element Manager up to 8.2.4.0 and classified as critical. Affected by this issue is some unknown functionality of the component Apache Commons Compress. The manipulation leads to denial of service. This vulnerability is handled as CVE-2021-36090. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Apache Commons Compress up to 1.20. This affects an unknown part of the component ZIP Archive Handler. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2021-36090. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Freedesktop OpenGL libglvnd bb06db5a. This affects the function glXGetDrawableScreen. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2023-45924. The attack can only be initiated within the local network. There is no exploit available.

Currently trending CVE - Hype Score: 1 - Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to use prepared statements in the SQL query of boards reordering which allows an attacker to retrieve data from the database, via a SQL injection when reordering specially crafted ...

Currently trending CVE - Hype Score: 1 - A lack of code signature verification in Parallels Desktop for Mac v19.3.0 and below allows attackers to escalate privileges via a crafted macOS installer, because Parallels Service is setuid root.

Currently trending CVE - Hype Score: 1 - Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection.