Aggregator

网络安全公司Dragos最近发布了2024年第四季度的最新研究报告，揭示出制造业成为该季度最频繁遭受网络攻击，特别是勒索软件攻击方式。

A high-severity security vulnerability, identified as CVE-2024-21966, has been discovered in the AMD Ryzen™ Master Utility, a software tool designed to optimize the performance of AMD Ryzen™ processors.  The vulnerability, classified as DLL hijacking, could allow attackers to execute arbitrary code and escalate privileges on affected systems.  With a CVSS score of 7.3, this vulnerability […]

The post AMD Ryzen DLL Hijacking Vulnerability Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.

案例主要入侵方式还是通过ssh爆破，尤其是遇到这种大批量被横向爆破的时候，可以分析病毒的特征针对性的编写专杀。

Рынок вакансий рухнул на 70%.

A vulnerability classified as problematic was found in Outback Power Mojave Inverter. Affected by this vulnerability is an unknown functionality. The manipulation leads to use of get request method with sensitive query strings. This vulnerability is known as CVE-2025-26473. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Brocade SANnav up to 2.3.1a. Affected is an unknown function of the component Docker Daemon. The manipulation leads to execution with unnecessary privileges. This vulnerability is traded as CVE-2024-2240. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Immunity Debugger 1.85. It has been rated as critical. This issue affects some unknown processing of the component Input Handler. The manipulation leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-53311. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in musl libc up to 1.2.5. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2025-26519. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Monica 4.1.2. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-54951. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Outback Power Mojave Inverter and classified as critical. Affected by this issue is some unknown functionality of the component POST Request Handler. The manipulation leads to command injection. This vulnerability is handled as CVE-2025-24861. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in mySCADA myPRO Manager up to 1.3. Affected is an unknown function. The manipulation leads to cleartext storage of sensitive information. This vulnerability is traded as CVE-2025-22896. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Docker-proxy 18.09.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to denial of service. This vulnerability is known as CVE-2024-57782. The attack can only be done within the local network. There is no exploit available.

A vulnerability, which was classified as very critical, has been found in Dingtian DT-R002, DT-R008, DT-R016 and DT-R032. This issue affects some unknown processing of the component Main Page. The manipulation leads to authentication bypass using alternate channel. The identification of this vulnerability is CVE-2025-1283. The attack may be initiated remotely. There is no exploit available.

核心在于攻击者利用闪电贷中的特殊机制，操纵放大了空市场中累加器的值。

Valve removed a game from Steam because it contained malware, the company also warned affected users to reformat their operating systems. Valve removed the game PirateFi from the Steam video game platform because it contained a Windows malicious code to steal browser cookies and hijack accounts. The company also warned affected users to fully reformatting […]

Построить гигантскую лунную базу? Не проблема.

Researchers have uncovered a high-severity SQL injection vulnerability, CVE-2025-1094, affecting PostgreSQL’s interactive terminal tool, psql.  This flaw was identified during research into the exploitation of CVE-2024-12356, a remote code execution (RCE) vulnerability in BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products.  The discovery highlights the interconnected nature of these vulnerabilities, as successful exploitation […]

The post PostgreSQL Terminal Tool Injection Vulnerability Allows Remote Code Execution appeared first on Cyber Security News.

Как элитные шпионы осваивают криминальный бизнес.

Sinaptik AIが提供するPandasAIのプロンプト機能には、任意のコードが実行可能な脆弱性が存在します。