Aggregator

近日，德国大众汽车集团旗下的软件公司Cariad因配置错误，导致约80万辆电动汽车的敏感信息在互联网上暴露数月，引发全球关注。这些信息不仅包括车辆的GPS坐标、电池电量和车辆状态等关键细节，而且部分数

快来开启《CTF训练营-Web篇》的学习之旅吧！

大众子公司Cariad数据泄露，80万电动车主信息暴露

看雪论坛作者ID：Payne-Wu

一、境外厂商产品漏洞1、Adobe Animate空指针解引用漏洞（CNVD-2024-48894）Adobe Animate是美国奥多比（Adobe）公司的一套Flash动画制作软件。Adobe A

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Adobe Animate空指针解引用漏洞（CNVD-2024-48894）

本周信息安全漏洞威胁整体评价级别为中。

For the latest discoveries in cyber research for the week of 30th December, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The Clop ransomware gang exploited a zero-day vulnerability (CVE-2024-50623) in Cleo’s Secure File Transfer products and is extorting 66 companies following alleged data theft. The attackers have given the victims 48 hours […]

The post 30th December – Threat Intelligence Report appeared first on Check Point Research.

正义黑客的狂欢日，网安人的专属摇滚演唱会！北京·福浪LIVEHOUSE等你来！

来自网络安全媒体“安全419”的官方消息——沉寂多年的“摇滚&黑客”项目在近期重新启动，全新的“摇滚黑客2025演唱会”将在2025年1月11日在北京开唱。这标志着曾经在网络安全行业火爆一时的“摇滚&

正义黑客的狂欢日，网安人的专属摇滚演唱会！北京·福浪LIVEHOUSE等你来！

欢迎收看本期《派评》。你可以通过文章目录快速跳转到你感兴趣的内容。如果发现了其它感兴趣的 App 或者关注的话题，也欢迎在评论区和我们讨论。不容错过的 App 更新除了「新鲜」App，App St

A vulnerability, which was classified as problematic, has been found in Novell NetWare 5.0/5.1. This issue affects some unknown processing of the file env.pl of the component Novonyx Server. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2002-1634. The attack may be initiated remotely. Furthermore, there is an exploit available.

Back in September 2023, we extended the curl command line tool with a n

ЦОД разрушают привычную жизнь американцев и их бытовой техники.

Security researchers have warned that a Proof-of-Concept (PoC) exploit has been publicly released for a critical vulnerability affecting Oracle WebLogic Server. The flaw tracked as CVE-2024-21182, poses a significant risk to organizations using the server, as it allows an unauthenticated attacker with network access to compromise the targeted system. The vulnerability impacts Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0, […]

The post PoC Exploited Released for Oracle Weblogic Server Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Authors:(1) Martyna Wiącek, Institute of Computer Science, Polish Academy of Sciences;(2) Piotr R

A vulnerability, which was classified as problematic, was found in Opsview up to 4.6.2. This affects an unknown part. The manipulation of the argument description/plugin_args leads to cross site scripting. This vulnerability is uniquely identified as CVE-2015-4420. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.