Aggregator

A vulnerability was found in Linux Kernel up to 6.12.4. It has been rated as critical. Affected by this issue is the function acpi_quirk_skip_serdev_enumeration of the component ACPI. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-56782. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component AMD Display. The manipulation leads to double free. This vulnerability is known as CVE-2024-56775. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.173/6.1.119/6.6.63/6.12.3. It has been classified as critical. Affected is the function btrfs_search_slot. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-56774. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.230/5.15.173/6.1.119/6.6.65/6.12.4 and classified as problematic. This issue affects some unknown processing of the file arch/mips/boot/dts/loongson/ls7a-pch.dtsi of the component Loongson64. The manipulation leads to Privilege Escalation. The identification of this vulnerability is CVE-2024-56785. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.12.3 and classified as critical. This vulnerability affects the function __kmem_cache_shutdown of the component nfsd. The manipulation leads to memory leak. This vulnerability was named CVE-2024-56779. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

[Darknetlive Archive] Man Sentenced in SLO Murder-for-Hire Case

LordVoldemort Claims to have Leaked the Data of Hollywood Hair

IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings.

The post Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard.

Running an obsolete OS, on obsolete hardware, configured with obsolete  settings.A widely used D

Cybersecurity researchers have found that bad actors are continuing to have success by spoofing sender email addresses as part of various malspam campaigns. Faking the sender address of an email is widely seen as an attempt to make the digital missive more legitimate and get past security mechanisms that could otherwise flag it as malicious. While there are safeguards such as DomainKeys

Cybersecurity researchers have found that bad actors are continuing to have success by spoofing sen

"Where Warlocks Stay Up Late" project speaks to hackers who have played pivotal roles in shaping the field of cybersecurity. The video interviews are complemented by an encyclopedia and an anthropological map.

This post will clarify what SSF is, describe its approach, explain the roles of the CAEP and RISC, and outline the ways to work together.

The post The OpenID Shared Signals Framework appeared first on Security Boulevard.

Взаимодействия хищников и жертв ускорили эволюцию.

via the comic humor & dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Origami Black Hole’ appeared first on Security Boulevard.

A vulnerability, which was classified as problematic, was found in CampCodes Computer Laboratory Management System 1.0. This affects an unknown part of the file /class/edit/edit. The manipulation of the argument s_lname leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-0342. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability, which was classified as critical, has been found in CampCodes Computer Laboratory Management System 1.0. Affected by this issue is some unknown functionality of the file /class/edit/edit. The manipulation of the argument e_photo leads to unrestricted upload. This vulnerability is handled as CVE-2025-0341. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in code-projects Cinema Seat Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/deleteBooking.php. The manipulation of the argument id leads to sql injection. This vulnerability is known as CVE-2025-0340. The attack can be launched remotely. Furthermore, there is an exploit available.

Submit #476897 / VDB-290829

Submit #476884 / VDB-290828