Aggregator

本文从 MCP 项目方的视角出发，帮助项目方对 MCP 钱包应用进行安全审计。

本文从 MCP 项目方的视角出发，帮助项目方对 MCP 钱包应用进行安全审计。

A vulnerability was found in Mozilla Thunderbird up to 91.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the component OpenPGP Key Handler. The manipulation leads to state issue. This vulnerability is handled as CVE-2022-1197. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Mozilla Thunderbird up to 91.7. This affects an unknown part of the component VR Process Handler. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2022-1196. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Mozilla Thunderbird up to 91.7. This vulnerability affects unknown code of the component rel Handler. The manipulation leads to use after free. This vulnerability was named CVE-2022-28282. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Mozilla Thunderbird up to 91.7. This issue affects the function MLoadTypedArrayElementHole of the component JIT Code Handler. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2022-28285. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Mozilla Thunderbird up to 91.7. Affected is an unknown function of the component iFrame Handler. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2022-28286. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Mozilla Thunderbird up to 91.7 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Rust Regex Crate. The manipulation leads to incorrect regular expression. This vulnerability is known as CVE-2022-24713. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

关键词网络攻击网络犯罪生态系统中出现了一个名为 RansomHub 的新型勒索软件即服务 (RaaS) 组织，

关键词勒索软件日立 Vantara 是日本跨国集团日立的子公司，该公司上周末被迫关闭服务器以遏制 Akira

关键词勒索软件英国零售巨头玛莎百货 (Marks & Spencer) 持续的宕机是由勒索软件攻击造成的，据

关键词吉利汽车4月29日上午，多位吉利车主遭遇车辆无法解锁的尴尬局面。

Find out how Reco keeps Microsoft 365 Copilot safe by spotting risky prompts, protecting data, managing user access, and identifying threats - all while keeping productivity high. Microsoft 365 Copilot promises to boost productivity by turning natural language prompts into actions. Employees can generate reports, comb through data, or get instant answers just by asking Copilot.  However,

Контента должно стать в разы больше — но какой ценой?

A vulnerability was found in Apple macOS. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2025-24206. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple visionOS. This affects an unknown part. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2025-24206. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Apple tvOS. This vulnerability affects unknown code. The manipulation leads to use after free. This vulnerability was named CVE-2025-24252. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Apple iOS and iPadOS. This issue affects some unknown processing. The manipulation leads to use after free. The identification of this vulnerability is CVE-2025-24252. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple macOS. Affected is an unknown function. The manipulation leads to use after free. This vulnerability is traded as CVE-2025-24252. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple visionOS and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to use after free. This vulnerability is known as CVE-2025-24252. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.