发布 | 中国移动发布《AI+工业互联网安全解决方案白皮书》
发布 | 中国移动发布《AI+工业互联网安全解决方案白皮书》
Aggregator
IDC:360安全大模型安全运营领域实测结果行业第一
1 year 4 months ago
IDC:360安全大模型安全运营领域实测结果行业第一
CVE-2024-41777 | IBM Cognos Controller 11.0.0/11.0.1 hard-coded credentials
1 year 4 months ago
A vulnerability was found in IBM Cognos Controller 11.0.0/11.0.1 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to hard-coded credentials.
This vulnerability is handled as CVE-2024-41777. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-25020 | IBM Cognos Controller 11.0.0/11.0.1 Filetype Attachment unrestricted upload
1 year 4 months ago
A vulnerability has been found in IBM Cognos Controller 11.0.0/11.0.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Filetype Attachment Handler. The manipulation leads to unrestricted upload.
This vulnerability is known as CVE-2024-25020. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-11220 | Open Automation Software prior 20.00.0076 incorrect execution-assigned permissions (icsa-24-338-03)
1 year 4 months ago
A vulnerability, which was classified as critical, was found in Open Automation Software. Affected is an unknown function. The manipulation leads to incorrect execution-assigned permissions.
This vulnerability is traded as CVE-2024-11220. The attack needs to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
1 year 4 months ago
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
Cyber-Unsafe Employees Increasingly Put Orgs at Risk
1 year 4 months ago
Too much access and privilege, plus a host of unsafe cyber practices, plague most workplaces, and the introduction of tools like GenAI will only make things worse.
Kristina Beek, Associate Editor, Dark Reading
无文件攻击的恶意软件加载器:PSLoramyra技术分析
1 year 4 months ago
无文件攻击的恶意软件加载器:PSLoramyra技术分析
Vulnerability Management
1 year 4 months ago
Vulnerability Management
140 китайских компаний на линии огня: США вновь обостряют чиповую войну
1 year 4 months ago
Америка продолжает попытки поставить развитие Поднебесной на паузу.
案例征集 | 网络资产繁杂但监管缺位 教育行业需要怎样的安全保障?
1 year 4 months ago
案例征集 | 网络资产繁杂但监管缺位 教育行业需要怎样的安全保障?
APT73
1 year 4 months ago
cohenido
Новый взгляд на материю: физики доказали максимальную запутанность в протонах
1 year 4 months ago
Исследование раскрывает неожиданные свойства элементарных частиц.
APT73
1 year 4 months ago
cohenido
Brain Cipher
1 year 4 months ago
cohenido
Lynx
1 year 4 months ago
cohenido
Building Cyber Resilience Against Ransomware Attacks
1 year 4 months ago
Building Cyber Resilience Against Ransomware Attacks
社区速递 071 | 你没见过的社区文章、一周最热评、派友用什么背单词
1 year 4 months ago
社区速递 071 | 你没见过的社区文章、一周最热评、派友用什么背单词
CVE-2024-11093 | SG Helper Plugin up to 1.0 on WordPress SVG File Upload cross site scripting
1 year 4 months ago
A vulnerability, which was classified as problematic, has been found in SG Helper Plugin up to 1.0 on WordPress. This issue affects some unknown processing of the component SVG File Upload Handler. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-11093. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-10952 | Authors List Plugin up to 2.0.4 on WordPress Shortcode update_authors_list_ajax code injection
1 year 4 months ago
A vulnerability classified as critical was found in Authors List Plugin up to 2.0.4 on WordPress. This vulnerability affects the function update_authors_list_ajax of the component Shortcode Handler. The manipulation leads to code injection.
This vulnerability was named CVE-2024-10952. The attack can be initiated remotely. There is no exploit available.
vuldb.com