CVE-2021-0003

CVE-2021-0003 affects Intel® Ethernet Controllers 800 series Linux drivers prior to version 1.4.11. Affected component: the RMDA driver on 800 series. Root cause: improper conditions check in the driver allows an authenticated user with local access to disclose information. Impact: information di...

CVE-2021-0002

The CVE-2021-0002 entry concerns Intel® Ethernet Controllers 800 series Linux drivers with an improper conditions check in versions before 1.4.11. The vulnerability can potentially allow an authenticated, local user to cause information disclosure or a denial of service (impacting confidentiality...

CVE-2021-0002

Improper conditions check in some IntelR Ethernet Controllers 800 series Linux drivers before version 1.4.11 may allow an authenticated user to potentially enable information disclosure or denial of service via local access...

CVE-2021-0084

CVE-2021-0084 affects Intel(R) Ethernet Controllers X722 and 800 series Linux RMDA drivers. The root cause is improper input validation in the RMDA driver prior to version 1.3.19, enabling a locally authenticated user to potentially escalate privileges. Impact is described as high for confidentia...

CVE-2021-0084

Improper input validation in the IntelR Ethernet Controllers X722 and 800 series Linux RMDA driver before version 1.3.19 may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel Ethernet Controllers 输入验证错误漏洞

Intel Ethernet Controllers is an Ethernet controller from Intel Corporation USA. A security vulnerability exists in the Intel Ethernet Controllers X722 and 800 series, which stems from incorrect input authentication in the Linux RMDA driver. The vulnerability could allow an authenticated user to...

Intel Ethernet Linux Driver Advisory - Lenovo Support US

No description provided...

Intel® Ethernet Linux Driver Advisory

Summary: Potential security vulnerabilities in some Intel® Ethernet Controllers X722 and 800 series Linux drivers may allow denial of service, escalation of privilege or information disclosure. Intel is releasing software driver updates to mitigate these potential vulnerabilities. Vulnerability...

Chinese Hackers Target Major Southeast Asian Telecom Companies

Three distinct clusters of malicious activities operating on behalf of Chinese state interests have staged a series of attacks to target networks belonging to at least five major telecommunications companies located in Southeast Asian countries since 2017. "The goal of the attackers behind these...

AD Starter Scan - Unconstrained delegation

Binary data adsikerberosdeleg.nbin...

Microsoft warns of PetitPotam attack taking over Windows domains

By Deeba Ahmed Experts reveal that the PetitPotam attack forces remote Windows servers such as Domain Controllers to validate a malicious destination. This is a post from HackRead.com Read the original post: Microsoft warns of PetitPotam attack taking over Windows domains...

New PetitPotam NTLM Relay Attack Lets Hackers Take Over Windows Domains

A newly uncovered security flaw in the Windows operating system can be exploited to coerce remote Windows servers, including Domain Controllers, to authenticate with a malicious destination, thereby allowing an adversary to stage an NTLM relay attack and completely take over a Windows domain. The...

Exploit for CVE-2020-1472

PoC exploit for CVE-2020-1472 ZeroLogon vulnerability. The target product/service is Windows Domain Controller DC. The vulnerability class/vector is authentication bypass via all-zero challenge. The probable entry point is the Netlogon service, which is accessed via the Impacket library. Notable...

CVE-2021-20593

Incorrect Implementation of Authentication Algorithm in Mitsubishi Electric Air Conditioning System/Centralized Controllers G-50A Ver.2.50 to Ver. 3.35, GB-50A Ver.2.50 to Ver. 3.35, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.20 and prior, GB-50ADA-J Ver.3.20 and...

Design/Logic Flaw

Incorrect Implementation of Authentication Algorithm in Mitsubishi Electric Air Conditioning System/Centralized Controllers G-50A Ver.2.50 to Ver. 3.35, GB-50A Ver.2.50 to Ver. 3.35, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.20 and prior, GB-50ADA-J Ver.3.20 and...

CVE-2021-20593

Incorrect Implementation of Authentication Algorithm in Mitsubishi Electric Air Conditioning System/Centralized Controllers G-50A Ver.2.50 to Ver. 3.35, GB-50A Ver.2.50 to Ver. 3.35, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.20 and prior, GB-50ADA-J Ver.3.20 and...

CVE-2021-20595

Improper Restriction of XML External Entity Reference vulnerability in Mitsubishi Electric Air Conditioning System/Centralized Controllers G-50A Ver.3.35 and prior, GB-50A Ver.3.35 and prior, GB-24A Ver.9.11 and prior, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.2...

CVE-2021-20595

CVE-2021-20595 affects Mitsubishi Electric Air Conditioning Systems across Centralized Controllers (G-50A, GB-50A, GB-24A, AG-150A-A/J, GB-50ADA-A/J, EB-50GU-A/J, AE-200A/E, AE-50A/E, EW-50A/E, TE-200A/TE-50A, TW-50A, CMS-RMD-J), Expansion Controllers (PAC-YG50ECA), and the BAC-HD150 BM adapter. ...

CVE-2021-20595

Improper Restriction of XML External Entity Reference vulnerability in Mitsubishi Electric Air Conditioning System/Centralized Controllers G-50A Ver.3.35 and prior, GB-50A Ver.3.35 and prior, GB-24A Ver.9.11 and prior, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.2...

July 13, 2021—KB5004289 (Monthly Rollup)

July 13, 2021—KB5004289 Monthly Rollup Important: Windows 7 and Windows Server 2008 R2 have reached the end of mainstream support and are now in extended support. Starting in July 2020, there will no longer be optional, non-security releases known as "C" releases for this operating system...