CVE-2018-4436

A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2...

EUVD-2021-21229

Malware in sbrugna...

EUVD-2017-5321

Malware in sbrugna...

EUVD-2010-3806

Malware in sbrugna...

EUVD-2011-3393

Malware in sbrugna...

EUVD-2018-16222

Malware in sbrugna...

EUVD-2023-36960

Malicious code in bioql PyPI...

CVE-2023-32735

A vulnerability has been identified in SIMATIC STEP 7 Safety V16 All versions V16 Update 7, SIMATIC STEP 7 Safety V17 All versions V17 Update 7, SIMATIC STEP 7 Safety V18 All versions V18 Update 2, SIMATIC STEP 7 V16 All versions V16 Update 7, SIMATIC STEP 7 V17 All versions V17 Update 7, SIMATIC...

CVE-2023-32735

A vulnerability has been identified in SIMATIC STEP 7 Safety V16 All versions V16 Update 7, SIMATIC STEP 7 Safety V17 All versions V17 Update 7, SIMATIC STEP 7 Safety V18 All versions V18 Update 2, SIMATIC STEP 7 V16 All versions V16 Update 7, SIMATIC STEP 7 V17 All versions V17 Update 7, SIMATIC...

CVE-2022-3761

OpenVPN Connect versions before 3.4.0.4506 macOS and OpenVPN Connect before 3.4.0.3100 Windows allows man-in-the-middle attackers to intercept configuration profile download requests which contains the users credentials...

PT-2023-6378 · Openvpn · Openvpn Connect

Name of the Vulnerable Software and Affected Versions: OpenVPN Connect versions before 3.4.0.4506 macOS OpenVPN Connect versions before 3.4.0.3100 Windows Description: The issue is related to errors in the certificate authentication procedure, allowing a remote attacker to perform a...

Qualys Performance Tuning Series: Qualys Cloud Agent Configuration Best Practice

The following blog is part of our Qualys Performance Tuning Series. The first blog covered the topic of optimizing performance through the removal of stale assets. This series aims to provide you with comprehensive guidance on how to enhance the efficiency and effectiveness of your Qualys...

CVE-2021-34579

In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.Attackers with network access to the Apache web server can download...

PT-2021-7544 · Phoenix Contact +2 · Fl Mguard Dm +2

Name of the Vulnerable Software and Affected Versions: Phoenix Contact: FL MGUARD DM versions 1.12.0 through 1.13.0 Description: The issue is related to inadequate access control in the Apache web server installed as part of the FL MGUARD DM on Microsoft Windows. Attackers with network access to...

F5 Networks BIG-IP : SNMP vulnerability (K40443301)

SNMP exposes sensitive configuration objects over insecure transmission channels. This issue is exposed when a passphrase is inserted into various profile types and accessed using SNMPv2. CVE-2019-6640 Impact An attacker with direct SNMP access to a BIG-IP system, or an attacker with a privileged...

CVE-2018-4436

A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2...

CVE-2018-4436

A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2...

CVE-2018-4436

CVE-2018-4436 involves a certificate validation issue in configuration profiles on Apple devices. Affected products/versions include iOS, tvOS, and watchOS prior to versions 12.1.1, 12.1.1, and 5.1.2 respectively. Root cause (per the sources) is improper certificate validation within configuratio...

About the security content of tvOS 12.1.1

About the security content of tvOS 12.1.1 This document describes the security content of tvOS 12.1.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

CVE-2017-13806

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Profiles" component. It does not enforce the configuration profile's settings for whether pairings are allowed...