Aggregator
文中福利 | 国内最专业、最全面的 [ .NET 代码审计 ] 体系化学习社区
4 months 2 weeks ago
.NET 免杀新思路,基于 Emit 技术实现的 WebShell
4 months 2 weeks ago
深度研究 | 为什么安全运营的数智化是必然趋势
4 months 2 weeks ago
本文内容摘自为安全牛最新发布的《智能化安全运营中心应用指南(2025年)》研究报告 当前,企业IT环境极其复杂 […]
aqniu
OpenAI 深夜曝 o3、o4-mini 新模型;华为「鸿蒙笔记本」万元起步;苹果 Vision Air 头显曝光|极客早知道
4 months 2 weeks ago
微信首个 AI 助手上线:可与「元宝」在聊天框对话
抖音启动「外贸优品专项扶持计划」
谷歌发新工具,专治后台「捣乱」安卓应用
[hardware] ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
4 months 2 weeks ago
ABB Cylon Aspect 3.08.02 (deployStart.php) - Unauthenticated Command Execution
[hardware] ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) - Authenticated Path Traversal
4 months 2 weeks ago
ABB Cylon Aspect 3.08.02 (ethernetUpdate.php) - Authenticated Path Traversal
[webapps] Angular-Base64-Upload Library 0.1.21 - Unauthenticated Remote Code Execution (RCE)
4 months 2 weeks ago
Angular-Base64-Upload Library 0.1.21 - Unauthenticated Remote Code Execution (RCE)
[webapps] Usermin 2.100 - Username Enumeration
4 months 2 weeks ago
Usermin 2.100 - Username Enumeration
[webapps] Blood Bank & Donor Management System 2.4 - CSRF Improper Input Validation
4 months 2 weeks ago
Blood Bank & Donor Management System 2.4 - CSRF Improper Input Validation
[webapps] compop.ca 3.5.3 - Arbitrary code Execution
4 months 2 weeks ago
compop.ca 3.5.3 - Arbitrary code Execution
[local] AnyDesk 9.0.1 - Unquoted Service Path
4 months 2 weeks ago
AnyDesk 9.0.1 - Unquoted Service Path
From maintenance to innovation: The cultural impact of managed secrets
4 months 2 weeks ago
How modern secrets management shapes culture, reduces friction, and clears the way for developer innovation
The post From maintenance to innovation: The cultural impact of managed secrets appeared first on Security Boulevard.
Dylan Villeneuve
[remote] TP-Link VN020 F3v(T) TT_V6.2.1021 - Buffer Overflow Memory Corruption
4 months 2 weeks ago
TP-Link VN020 F3v(T) TT_V6.2.1021 - Buffer Overflow Memory Corruption
[remote] TP-Link VN020 F3v(T) TT_V6.2.1021 - Denial Of Service (DOS)
4 months 2 weeks ago
TP-Link VN020 F3v(T) TT_V6.2.1021 - Denial Of Service (DOS)
看威努特分布式存储如何保障医院PACS业务高可靠
4 months 2 weeks ago
数据的存储能力、管理效率、成本控制、数据安全等方面均获得显著改善。
MITRE CVE Program Uncertainty: Mend.io’s commitment to uninterrupted vulnerability protection
4 months 2 weeks ago
Mend.io continues to deliver uninterrupted, multi-source vulnerability protection.
The post MITRE CVE Program Uncertainty: Mend.io’s commitment to uninterrupted vulnerability protection appeared first on Security Boulevard.
Mend.io Communications
CVE-2025-43704 | Arctera Veritas Data Insight up to 7.1.1 cleartext transmission
4 months 2 weeks ago
A vulnerability was found in Arctera Veritas Data Insight up to 7.1.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cleartext transmission of sensitive information.
The identification of this vulnerability is CVE-2025-43704. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-1704 | Google ChromeOS 124.0.6367.34 on Chromebooks ComponentInstaller state issue
4 months 2 weeks ago
A vulnerability has been found in Google ChromeOS 124.0.6367.34 on Chromebooks and classified as problematic. This vulnerability affects unknown code of the component ComponentInstaller. The manipulation leads to state issue.
This vulnerability was named CVE-2025-1704. It is possible to launch the attack on the local host. There is no exploit available.
vuldb.com
CVE-2025-1566 | Google ChromeOS 129.0.6668.36 DNS Query missing encryption
4 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Google ChromeOS 129.0.6668.36. This affects an unknown part of the component DNS Query Handler. The manipulation leads to missing encryption of sensitive data.
This vulnerability is uniquely identified as CVE-2025-1566. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com