Fitbit activity-tracker information disclosure vulnerability

The Fitbit activity-tracker is a smart sports watch from the American company Fitbit. An information disclosure vulnerability exists in Fitbit activity-tracker. The vulnerability stems from errors such as configuration during operation of a networked system or product. An unauthorized attacker...

Linux kernel information disclosure vulnerability (CNVD-2019-23989)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An information disclosure vulnerability exists in versions of Linux kernel prior to 5.1.7. The vulnerability arises from errors in configuration and other errors in th...

IBM Cognos Controller Information Disclosure Vulnerability

IBM Cognos Controller is a suite of business intelligence and planning solutions from IBM in the United States. The product features process automation, financial audit control, and the creation and management of financial reports. An information disclosure vulnerability exists in IBM Cognos...

SAP HANA Extended Application Services Information Disclosure Vulnerability (CNVD-2019-34744)

SAP HANA is a high-performance real-time data analytics platform from SAP. The platform provides data query functions to support users to query real-time business data query and analysis.Extended Application Services is an application server, Web server and SAP HANA System within the Web...

Python Information Disclosure Vulnerability (CNVD-2019-17319)

Python is an open source, object-oriented programming language from the Python Software Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. An information disclosure vulnerability exists in Python. The vulnerability stems from errors such as...

Yubico pam-u2f information disclosure vulnerability

Yubico pam-u2f is a portable authentication module for U2F. An information disclosure vulnerability exists in Yubico pam-u2f version 1.0.7. The vulnerability stems from an error in configuration or other errors in the operation of a networked system or product. An unauthorized attacker could...

Information Disclosure Vulnerability in Multiple Intel Products (CNVD-2019-22232)

Intel Xeon Scalable Processors are products of Intel Corporation.Intel Xeon Scalable Processors is a scalable server central processing unit CPU.Intel Xeon Processor E7 v4 Family is a Xeon E7 series server central processing unit CPU.Intel Xeon Processor E5 v4 Family is a Xeon E5 series server...

Gemalto Ezio Server Information Disclosure Vulnerability

Gemalto Ezio Server is an authentication server from Gemalto USA. An information disclosure vulnerability exists in Gemalto Ezio Server versions prior to 3.1.0. The vulnerability arises from errors in the configuration of a networked system or product during operation, and can be exploited by an...

Information Disclosure Vulnerability in Multiple Qualcomm Products (CNVD-2019-13771)

Qualcomm MDM9206 and others are products of Qualcomm Incorporated.MDM9206 is a central processing unit CPU product.Qualcomm MDM9150 is a central processing unit CPU product.SDX20 is a modem. An information disclosure vulnerability exists in multiple Qualcomm products. The vulnerability arises fro...

IBM InfoSphere Information Analyzer, InfoSphere Information Governance Catalog and InfoSphere Information Server on Cloud Information Disclosure Vulnerabilities

IBM InfoSphere Information Analyzer, InfoSphere Information Governance Catalog, and InfoSphere Information Server on Cloud are products of IBM USA. An information disclosure vulnerability exists in IBM InfoSphere Information Analyzer, InfoSphere Information Governance Catalog, and InfoSphere...

IBM Business Automation Workflow and IBM Business Process Manager Information Disclosure Vulnerability

IBM Business Process Manager BPM and IBM Business Automation Workflow are both products of IBM Corporation, U.S.A. IBM Business Process Manager is a comprehensive business process management platform. The platform provides a series of related tools for business process modeling, assembly,...

SAP Crystal Reports for Visual Studio Information Disclosure Vulnerability

SAP Crystal Reports for Visual Studio is the German SAP SAP company's set of Crystal report design software for Visual Studio development platform. An information disclosure vulnerability exists in SAP Crystal Reports for Visual Studio, which arises from errors such as configuration during...

Microsoft Edge Information Disclosure Vulnerability (CNVD-2019-10456)

Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. An information disclosure vulnerability exists in Microsoft Edge that originates from errors such as configuration during operation of a networked system or product. An unauthorized...

IBM InfoSphere Information Server Information Disclosure Vulnerability (CNVD-2020-17612)

IBM InfoSphere Information Server is a set of data integration platforms from IBM in the United States. The platform can be used to integrate data information obtained from various sources. An information disclosure vulnerability exists in IBM InfoSphere Information Server, which arises from erro...

Authentication fails using SSH keys since 2.3.5

Neither the Pagent agent or OpenSSH is working to authenticate since I upgraded. Switching SSH services makes no difference. If I go to the command line, using ssh -i identfile I have no issues authenticating to any system. Other symptoms include the terminal not going to the repository but using...

Google to Ditch Public Key Pinning in Chrome

Google said that in an upcoming version of Chrome it will deprecate the browser’s support for HTTP public key pinning. Instead, it will adopt the “safer” more flexible solution of Expect-CT headers. HTTP public key pinning HPKP is a browser security measure that protects against an SSL certificat...

[Lynis 1.4.6] Security and System Auditing Tool to Harden Linux Systems

Lynis is an auditing tool for Unix/Linux. It performs a security scan and determines the hardening state of the machine. Any detected security issues will be provided in the form of a suggestion or warning. Beside security related information it will also scan for general system information,...

[Lynis 1.4.2] Security and System Auditing Tool to Harden Linux Systems

Lynis is an auditing tool for Unix/Linux. It performs a security scan and determines the hardening state of the machine. Any detected security issues will be provided in the form of a suggestion or warning. Beside security related information it will also scan for general system information,...

Poor Patching, Passwords Plague Government Computers

A damning report on the security of government computers paints an unflattering picture of lax or non-existent patching efforts, poor password policies, configuration errors and a general lack of confidence that exposes critical services and systems to attack. The report, “The Federal Government’...

[Lynis 1.4.0] Security and System Auditing Tool to Harden Linux Systems

Lynis is an auditing tool for Unix/Linux. It performs a security scan and determines the hardening state of the machine. Any detected security issues will be provided in the form of a suggestion or warning. Beside security related information it will also scan for general system information,...