Lucene search
K

5118 matches found

OSV
OSV
added 2024/09/26 6:15 p.m.6 views

CVE-2024-45374

The goTenna Pro ATAK plugin uses a weak password for sharing encryption keys via the key broadcast method. If the broadcasted encryption key is captured over RF, and password is cracked via brute force attack, it is possible to decrypt it and use it to decrypt all future and past messages sent vi...

6.5CVSS5.8AI score0.00116EPSS
Exploits0References1
CVE
CVE
added 2024/09/26 5:18 p.m.57 views

CVE-2024-47121

The CVE-2024-47121 weakness in the goTenna Pro App is due to weak password requirements used to share encryption keys via the key broadcast method. If an encrypted broadcast key captured over RF is brute-forced, an attacker could decrypt past and future messages encrypted with that key. Affected ...

6CVSS5.8AI score0.00115EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/09/26 12:0 a.m.4 views

goTenna Pro 安全漏洞

goTenna Pro is a series of devices from goTenna that create networks for off-grid communications and situational awareness. A security vulnerability exists in the goTenna Pro that stems from the use of a weak cipher for QR broadcast messages. If a QR broadcast message is captured via RF, it can b...

6CVSS6.7AI score0.00115EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/26 12:0 a.m.5 views

PT-2024-32416 · Gotenna · Gotenna Pro App +2

Name of the Vulnerable Software and Affected Versions: goTenna Pro App versions affected versions not specified goTenna Pro X goTenna Pro X2 Description: The goTenna Pro App uses a weak password for sharing encryption keys via the key broadcast method. If the broadcasted encryption key is capture...

6CVSS7.2AI score0.00115EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.2 views

FreeBSD : zeek -- potential DoS vulnerability (d47b7ae7-fe1d-4f7f-919a-480ca8035f00)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the d47b7ae7-fe1d-4f7f-919a-480ca8035f00 advisory. Tim Wojtulewicz of Corelight reports: The POP3 parser has been hardened to avoid unbounded state growth...

5.6AI score
Exploits0References2
FreeBSD
FreeBSD
added 2024/09/24 12:0 a.m.4 views

zeek -- potential DoS vulnerability

Tim Wojtulewicz of Corelight reports: The POP3 parser has been hardened to avoid unbounded state growth in the face of one-sided traffic capture or when enabled for non-POP3 traffic...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/19 12:0 a.m.18 views

Mattermost Desktop < 5.9.0 (macOS) (MMSA-2024-00372)

The version of Mattermost Desktop installed on the remote host is prior to 5.9.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00372 advisory. - Mattermost versions 5.9.0 Mattermost Desktop app have a vulnerability in their screen capture functionality, allowing...

5.3CVSS5.6AI score0.00312EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/19 12:0 a.m.18 views

Mattermost Desktop < 5.9.0 (Windows / Unix) (MMSA-2024-00372)

The version of Mattermost Desktop installed on the remote host is prior to 5.9.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00372 advisory. - Mattermost versions 5.9.0 Mattermost Desktop app have a vulnerability in their screen capture functionality, allowing...

5.3CVSS5.6AI score0.00312EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2024/09/17 12:54 a.m.8 views

sos bug fix and enhancement update

An update is available for sos. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sos package contains a set of utilities that gather informatio...

6.9AI score
Exploits0
NVD
NVD
added 2024/09/17 12:15 a.m.17 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

7.5CVSS0.00522EPSS
Exploits0References2
OSV
OSV
added 2024/09/17 12:15 a.m.4 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

7.5CVSS5.8AI score0.00522EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/17 12:0 a.m.3 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 15, which originates from a logical issue that could cause a process to capture screen content without the user's consent...

7.5CVSS6.2AI score0.00522EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/09/17 12:0 a.m.10 views

Mageia: Security Advisory (MGASA-2024-0303)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00317EPSS
Exploits1References4
CVE
CVE
added 2024/09/16 11:22 p.m.47 views

CVE-2024-44189

CVE-2024-44189 affects macOS WindowServer and relates to a logic issue where a process could capture screen contents without user consent. The public records indicate this was addressed with improved checks and that macOS Sequoia 15 includes the fix. The Red Hat and Apple advisories corroborate t...

7.5CVSS6.1AI score0.00522EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/16 11:22 p.m.20 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

5.8AI score0.00522EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/16 11:22 p.m.16 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

0.00522EPSS
Exploits0References1
Mageia
Mageia
added 2024/09/16 5:44 p.m.16 views

Updated wireshark packages fix security vulnerability

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.2.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file. CVE-2024-8250...

7.8CVSS7.5AI score0.00317EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2024/09/16 3:32 p.m.17 views

Mattermost Desktop App fails to safeguard screen capture functionality

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

5.3CVSS6.7AI score0.00312EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/09/16 3:32 p.m.7 views

GHSA-5777-RCJJ-9P22 Mattermost Desktop App fails to safeguard screen capture functionality

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

6.3CVSS4.6AI score0.00312EPSS
Exploits0References3
NVD
NVD
added 2024/09/16 3:15 p.m.12 views

CVE-2024-39772

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

5.3CVSS0.00312EPSS
Exploits0References1
Rows per page
Query Builder