Aggregator

A vulnerability classified as problematic has been found in Apple macOS up to 10.12.3. Affected is an unknown function of the component Apache. The manipulation leads to improper input validation. This vulnerability is traded as CVE-2016-8740. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Artificial intelligence is just a spoke in the wheel of security – an important spoke but, alas, only one

США раскрывают детали атаки на штаб Трампа.

The Cybersecurity and Infrastructure Security Agency (CISA) has called upon federal agencies and organizations to take immediate action concerning a critical vulnerability affecting Ivanti Cloud Services Appliance (CSA) 4.6. The vulnerability, CVE-2024-8190, poses a significant threat as it allows cyber threat actors to execute OS command injections, potentially gaining control over affected systems. CVE-2024-8190: A […]

The post CISA Urges Agencies to Upgrade or Remove End-of-Life Ivanti Appliance appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability, which was classified as critical, has been found in Apple iOS up to 10.2. Affected by this issue is some unknown functionality of the component Safari. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2017-2389. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

看雪论坛作者ID：haogl

月圆人安长胜意，事事遂心常喜乐

适合新手入门

看雪论坛作者ID：Qanux

A vulnerability classified as critical has been found in Mattermost Desktop App up to 5.8.0. Affected is an unknown function of the file cmd.exe of the component Absolute Path Handler. The manipulation leads to uncontrolled search path. This vulnerability is traded as CVE-2024-39613. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in D-Link DIR-X4860 A1 1.00/1.04. It has been rated as very critical. This issue affects some unknown processing of the component Web Service. The manipulation leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-45695. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in D-Link DIR-X4860 A1 1.00/1.04. It has been declared as critical. This vulnerability affects unknown code of the component Telnet Service. The manipulation leads to os command injection. This vulnerability was named CVE-2024-45698. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Apple Safari up to 10.0. It has been classified as critical. This affects an unknown part of the component Authentication. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2017-2389. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

AST SpaceMobile бросает вызов традиционным операторам.

A vulnerability was found in D-Link DIR-X4860 A1 and COVR-X1870. It has been classified as critical. This affects an unknown part of the component Telnet Service. The manipulation leads to backdoor. This vulnerability is uniquely identified as CVE-2024-45696. The attack needs to be done within the local network. There is no exploit available.

Under-fire DNA testing firm 23andMe will pay $30m to settle class action lawsuit

A vulnerability classified as critical has been found in Apple tvOS up to 10.1. This affects an unknown part of the component WebKit. The manipulation leads to cross site scripting (Universal). This vulnerability is uniquely identified as CVE-2017-2475. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

#DC域 #AS-REP #TGT票证窃取 #AutoLogon凭据 #DCSync攻击

A vulnerability, which was classified as problematic, has been found in JSP and MySQL Administrador Web 1. This issue affects some unknown processing of the file sys/sys/listaBD2.jsp. The manipulation of the argument bd leads to cross site scripting. The identification of this vulnerability is CVE-2015-6945. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Franklinfueling Ts-550 Evo up to 2.0.0.6832. This affects an unknown part. The manipulation leads to credentials management. This vulnerability is uniquely identified as CVE-2013-7248. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.