5118 matches found
CVE-2024-45374
The goTenna Pro ATAK plugin uses a weak password for sharing encryption keys via the key broadcast method. If the broadcasted encryption key is captured over RF, and password is cracked via brute force attack, it is possible to decrypt it and use it to decrypt all future and past messages sent vi...
CVE-2024-47121
The CVE-2024-47121 weakness in the goTenna Pro App is due to weak password requirements used to share encryption keys via the key broadcast method. If an encrypted broadcast key captured over RF is brute-forced, an attacker could decrypt past and future messages encrypted with that key. Affected ...
goTenna Pro 安全漏洞
goTenna Pro is a series of devices from goTenna that create networks for off-grid communications and situational awareness. A security vulnerability exists in the goTenna Pro that stems from the use of a weak cipher for QR broadcast messages. If a QR broadcast message is captured via RF, it can b...
PT-2024-32416 · Gotenna · Gotenna Pro App +2
Name of the Vulnerable Software and Affected Versions: goTenna Pro App versions affected versions not specified goTenna Pro X goTenna Pro X2 Description: The goTenna Pro App uses a weak password for sharing encryption keys via the key broadcast method. If the broadcasted encryption key is capture...
FreeBSD : zeek -- potential DoS vulnerability (d47b7ae7-fe1d-4f7f-919a-480ca8035f00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the d47b7ae7-fe1d-4f7f-919a-480ca8035f00 advisory. Tim Wojtulewicz of Corelight reports: The POP3 parser has been hardened to avoid unbounded state growth...
zeek -- potential DoS vulnerability
Tim Wojtulewicz of Corelight reports: The POP3 parser has been hardened to avoid unbounded state growth in the face of one-sided traffic capture or when enabled for non-POP3 traffic...
Mattermost Desktop < 5.9.0 (macOS) (MMSA-2024-00372)
The version of Mattermost Desktop installed on the remote host is prior to 5.9.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00372 advisory. - Mattermost versions 5.9.0 Mattermost Desktop app have a vulnerability in their screen capture functionality, allowing...
Mattermost Desktop < 5.9.0 (Windows / Unix) (MMSA-2024-00372)
The version of Mattermost Desktop installed on the remote host is prior to 5.9.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00372 advisory. - Mattermost versions 5.9.0 Mattermost Desktop app have a vulnerability in their screen capture functionality, allowing...
sos bug fix and enhancement update
An update is available for sos. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sos package contains a set of utilities that gather informatio...
CVE-2024-44189
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...
CVE-2024-44189
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...
Apple macOS 安全漏洞
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 15, which originates from a logical issue that could cause a process to capture screen content without the user's consent...
Mageia: Security Advisory (MGASA-2024-0303)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-44189
CVE-2024-44189 affects macOS WindowServer and relates to a logic issue where a process could capture screen contents without user consent. The public records indicate this was addressed with improved checks and that macOS Sequoia 15 includes the fix. The Red Hat and Apple advisories corroborate t...
CVE-2024-44189
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...
CVE-2024-44189
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...
Updated wireshark packages fix security vulnerability
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.2.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file. CVE-2024-8250...
Mattermost Desktop App fails to safeguard screen capture functionality
Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...
GHSA-5777-RCJJ-9P22 Mattermost Desktop App fails to safeguard screen capture functionality
Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...
CVE-2024-39772
Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...