kernel: nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()

In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfpappctrlmsgalloc Add check for the return value of nfpappctrlmsgalloc in nfpbpfcmsgalloc to prevent null pointer dereference...

EUVD-2013-4977

Malware in sbrugna...

EUVD-2025-17739

Malicious code in bioql PyPI...

CVE-2025-33069

Improper verification of cryptographic signature in App Control for Business WDAC allows an unauthorized attacker to bypass a security feature locally...

CVE-2025-33069

Improper verification of cryptographic signature in App Control for Business WDAC allows an unauthorized attacker to bypass a security feature locally...

CVE-2025-33069 Windows App Control for Business Security Feature Bypass Vulnerability

...

CVE-2025-33069 Windows App Control for Business Security Feature Bypass Vulnerability

...

Windows App Control for Business Security Feature Bypass Vulnerability

Improper verification of cryptographic signature in App Control for Business WDAC allows an unauthorized attacker to bypass a security feature locally...

PT-2025-24854 · Microsoft · App Control For Business +1

Name of the Vulnerable Software and Affected Versions: App Control for Business WDAC affected versions not specified Description: The issue is related to the improper verification of cryptographic signatures, allowing an unauthorized attacker to bypass a security feature locally. This could...

CVE-2023-20858

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying...

CVE-2022-22952

VMware Carbon Black App Control 8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7.4 and 8.8.x prior to 8.8.2 contains a file upload vulnerability. A malicious actor with administrative access to the VMware App Control administration interface may be able to execute code on the Windo...

CVE-2025-32796 Dify Allows Unauthorized APP Enable/Disable via API

Dify is an open-source LLM app development platform. Prior to version 0.6.12, a vulnerability was identified in the DIFY where normal users can enable or disable apps through the API, even though the web UI button for this action is disabled and normal users are not permitted to make such changes...

UBUNTU-CVE-2025-21848

In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfpappctrlmsgalloc Add check for the return value of nfpappctrlmsgalloc in nfpbpfcmsgalloc to prevent null pointer dereference...

CVE-2025-21848 nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()

In the Linux kernel, the following vulnerability has been resolved: nfp: bpf: Add check for nfpappctrlmsgalloc Add check for the return value of nfpappctrlmsgalloc in nfpbpfcmsgalloc to prevent null pointer dereference...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a null pointer dereference vulnerability that stems from not checking the nfpappctrlmsgalloc return value, which could lead to a null pointer...

CVE-2024-36557

The device ID is based on IMEI in Forever KidsWatch Call Me KW50 R36YDRA3PWGM7SV1.02019071516.19.24cobh and Forever KidsWatch Call Me 2 KW60 R36CWYDES4A292V1.02023.05.2422.49.44cobb. If a malicious user changes the IMEI to the IMEI of a unit they registered in the mobile app, it is possible to...

Researchers Uncover Flaws in Windows Smart App Control and SmartScreen

Cybersecurity researchers have uncovered design weaknesses in Microsoft's Windows Smart App Control and SmartScreen that could enable threat actors to gain initial access to target environments without raising any warnings. Smart App Control SAC is a cloud-powered security feature introduced by...

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

Microsoft on Monday confirmed its plans to deprecate NT LAN Manager NTLM in Windows 11 in the second half of the year, as it announced a slew of new security measures to harden the widely-used desktop operating system. "Deprecating NTLM has been a huge ask from our security community as it will...

VMware Carbon Black App Control SEoL (8.7.x)

According to its version, VMware Carbon Black App Control is 8.7.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

VMware Carbon Black App Control SEoL (8.5.x)

According to its version, VMware Carbon Black App Control is 8.5.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...