Aggregator

掌握x64dbg，从基础到高级调试与自动化

该漏洞的严重性来自于其远程利用的可能性、无需用户交互以及低权限要求，可让攻击者以停止操作作业的所有者身份执行环境停止操作。

看雪论坛作者ID：Ratin

培训时间：10月22日09:00-18:00（峰会前一天）

A vulnerability classified as problematic has been found in ARM Trusted Firmware-M up to 1.2. Affected is an unknown function of the component NSPE Handler Mode. The manipulation leads to denial of service. This vulnerability is traded as CVE-2021-27562. The attack can only be initiated within the local network. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Kaseya Virtual System Administrator up to 9.5.6. Affected by this issue is some unknown functionality. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2021-30116. The attack can only be done within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Adobe Acrobat Reader up to 2017.011.30194/2020.001.30020/2021.001.20150. This vulnerability affects unknown code. The manipulation leads to use after free. This vulnerability was named CVE-2021-28550. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Yealink Device Management 3.6.0.20 and classified as critical. Affected by this issue is some unknown functionality of the file /sm/api/v1/firewall/zone/services. The manipulation leads to command injection. This vulnerability is handled as CVE-2021-27561. The attack needs to be initiated within the local network. Furthermore, there is an exploit available.

网络安全为人民，网络安全靠人民

尚无定论

速修复

error code: 1106

Meta признала использование данных пользователей для обучения ИИ.

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

全国人大常委会周五表决通过了关于实施渐进式延迟法定退休年龄的决定。根据决定，从 2025 年 1 月 1 日起，我国将用 15 年时间，逐步将男职工的法定退休年龄从原 60 周岁延迟到 63 周岁，将女职工的法定退休年龄从原 50 周岁、55 周岁，分别延迟到 55 周岁、58 周岁。这是职工法定退休年龄自 1950 年代确定后，70多年来首次进行调整。除延迟法定退休年龄外，决定将调整职工按月领取基本养老金最低缴费年限，从 2030 年起由 15 年逐步提高至 20 年，每年提高 6 个月。在统一实施延迟退休基础上，决定允许职工达到最低缴费年限，可以自愿选择弹性提前退休，提前时间最长不超过 3 年，且退休年龄不得低于原法定退休年龄；也可以在单位与职工协商一致的前提下弹性延迟退休，延迟时间最长不超过 3 年。

A vulnerability was found in 5SOS Family Planet 2.3.4. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-6694. Access to the local network is required for this attack. There is no exploit available.

Microsoft will introduce new security capabilities for solution providers outside of kernel mode, preventing events like the CrowdStrike global outage

Defensie heeft stoffelijke resten aangetroffen bij de berging van de Vickers Wellington HE346, die in juli begon. Het toestel van de Royal Air Force stortte 26 juni 1943 neer bij het Friese Holwert. De stoffelijke resten zijn overgebracht naar het laboratorium van de Bergings- en Identificatiedienst van de Koninklijke Landmacht (BIDKL) in Soesterberg.