Snapdragon Mobile, Small Cell SoC Security Vulnerabilities

CVE-2024-29997

Windows Mobile Broadband Driver Remote Code Execution...

CVE-2024-30059 Microsoft Intune for Android Mobile Application Management Tampering Vulnerability

...

CVE-2024-30059 Microsoft Intune for Android Mobile Application Management Tampering Vulnerability

...

CVE-2024-30021 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30021 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30012 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30005 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30003 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30004 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30004 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30001 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30001 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30002 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30000 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29999 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29999 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-30000 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29998 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29998 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29997 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-29997 Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

CVE-2024-4737

A vulnerability was found in Campcodes Legal Case Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/vendor. The manipulation of the argument company_name/mobile leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-4737

A vulnerability was found in Campcodes Legal Case Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/vendor. The manipulation of the argument company_name/mobile leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-32655

Npgsql is the .NET data provider for PostgreSQL. The WriteBind() method in src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs uses int variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths becomes too large. This...

CVE-2024-32655

Npgsql is the .NET data provider for PostgreSQL. The WriteBind() method in src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs uses int variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths becomes too large. This...

CVE-2024-32655

Npgsql is the .NET data provider for PostgreSQL. The WriteBind() method in src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs uses int variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths becomes too large. This...

CVE-2024-32655

Npgsql is the .NET data provider for PostgreSQL. The WriteBind() method in src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs uses int variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths becomes too large. This...

Unveiling the power of Wiz's Security Graph with automated blast radius and root cause analysis for cloud incident response

Wiz assists Incident Response (IR) and SOC teams with containment through automated assessment of security incidents by identifying possible root causes and calculating the potential blast radius of compromised...

CVE-2024-22064

ZTE ZXUN-ePDG product, which serves as the network node of the VoWifi system, under by default configuration, uses a set of non-unique cryptographic keys during establishing a secure connection(IKE) with the mobile devices connecting over the internet . If the set of keys are leaked or cracked,...

CVE-2024-22064

ZTE ZXUN-ePDG product, which serves as the network node of the VoWifi system, under by default configuration, uses a set of non-unique cryptographic keys during establishing a secure connection(IKE) with the mobile devices connecting over the internet . If the set of keys are leaked or cracked,...

CVE-2023-49781

NocoDB is software for building databases as spreadsheets. Prior to 0.202.9, a stored cross-site scripting vulnerability exists within the Formula virtual cell comments functionality. The nc-gui/components/virtual-cell/Formula.vue displays a v-html tag with the value of "urls" whose contents are...

CVE-2023-49781

NocoDB is software for building databases as spreadsheets. Prior to 0.202.9, a stored cross-site scripting vulnerability exists within the Formula virtual cell comments functionality. The nc-gui/components/virtual-cell/Formula.vue displays a v-html tag with the value of "urls" whose contents are...

CVE-2023-49781

NocoDB is software for building databases as spreadsheets. Prior to 0.202.9, a stored cross-site scripting vulnerability exists within the Formula virtual cell comments functionality. The nc-gui/components/virtual-cell/Formula.vue displays a v-html tag with the value of "urls" whose contents are...

CVE-2023-37526

HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning...

CVE-2023-37526

HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning...

Talos joins CISA to counter cyber threats against non-profits, activists and other at-risk communities

Cisco Talos is delighted to share updates about our ongoing partnership with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to combat cybersecurity threats facing civil society organizations. Talos has partnered with CISA on several initiatives through the Joint Cyber Defense...

Ongoing Campaign Bombards Enterprises with Spam Emails and Phone Calls

Cybersecurity researchers have uncovered an ongoing social engineering campaign that bombards enterprises with spam emails with the goal of obtaining initial access to their environments for follow-on exploitation. "The incident involves a threat actor overwhelming a user's email with junk and...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Microsoft Intune for Android Mobile Application Management Tampering Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

May 14, 2024—KB5037770 (OS Build 22000.2960)

May 14, 2024—KB5037770 (OS Build 22000.2960) For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 21H2, see its update history page. Note Follow @WindowsUpdate to find out...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

...