The vulnerability in virtual and physical systems of Veeam Backup & Replication lies in the insufficient protection of registration data, allowing attackers to execute arbitrary codes.

The vulnerability of virtual and physical systems managed by Veeam Backup & Replication is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor, operating remotely, to execute arbitrary code...

The vulnerability of microprogrammed software in telephones and audio conferencing systems, related to the lack of measures taken at the control level to protect data, allows a perpetrator to execute arbitrary codes.

The vulnerability of microprogrammed software in telephones and audio conferencing systems is related to the lack of measures taken for data cleaning at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Malware Hidden in Fake Business Proposals Hits YouTube Creators

Cybercriminals are targeting YouTube creators with sophisticated phishing attacks disguised as brand collaborations. Learn how to identify these scams, protect your data, and safeguard your online presence...

ROS-20241216-09

Vulnerability in the Automatic ConfigProvider component of Apache Kafka Message Manager is related to insufficient protection of service data. inadequate protection of proprietary data. Exploitation of the vulnerability could allow an attacker acting remotely, disclose protected information...

Dell RecoverPoint for Virtual Machines 数据伪造问题漏洞

Dell RecoverPoint for Virtual Machines is a data protection and recovery solution for virtual machine environments. An OS command injection vulnerability exists in Dell RecoverPoint for Virtual Machines. The vulnerability stems from a lack of proper validation of user input. An attacker could use...

WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 3.6.5 - Missing Authorization to Authenticated (Subscriber+) Whitelist Script vulnerability

Missing Authorization to Authenticated Subscriber+ Whitelist Script vulnerability discovered by Tieu Pham Trong Nhan in WordPress Plugin WP Cookie Notice for GDPR, CCPA & ePrivacy Consent versions = 3.6.5...

CVE-2024-44300

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2. An app may be able to access protected user data...

About the security content of macOSSonoma14.7.2

About the security content of macOSSonoma14.7.2 This document describes the security content of macOS Sonoma 14.7.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

PT-2024-10078 · Drupal · Drupal Git Utilities

Name of the Vulnerable Software and Affected Versions: Drupal Git Utilities for Drupal versions . Description: The issue is related to insufficient protection of service data in the Git Utilities module for the Drupal CMS, which can be exploited by a remote attacker to gain read, modify, or delet...

PT-2025-3053 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.2 macOS versions prior to 14.7.2 macOS versions prior to 15.2 Description: The issue is related to a lack of protection for sensitive data, which may allow an application to access protected user data. This proble...

PT-2025-3054 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.2 Description: The issue is related to insufficient protection of sensitive data, which may allow an unauthorized party to access protected information. An app may be able to access user-sensitive data due to this...

About the security content of watchOS11.2

About the security content of watchOS11.2 This document describes the security content of watchOS 11.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Conquering the Complexities of Modern BCDR

The modern business landscape is thrilling yet daunting. Rapidly evolving technology, persistent cyberthreats and escalating operational complexities make data protection and seamless business continuity challenging for businesses of all sizes. Your organization needs robust security measures tha...

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server lies in the insufficient protection of sensitive data, allowing attackers to influence privacy issues.

The vulnerability of cloud-based software for creating and using Nextcloud Server and Nextcloud Enterprise Server is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to influence the confidentiality of sensitive information...

The vulnerability of the Cisco Meeting Management platform’s journaling subsystem allows attackers to disclose protected information.

The vulnerability of the Cisco Meeting Management platform’s journaling subsystem relates to the lack of protection for sensitive data. Exploiting this vulnerability could allow a malicious actor to disclose confidential information...

The vulnerability of the Flow-X gas consumption controller and processor web service allows a intruder to access confidential information.

The vulnerability of the Flow-X gas consumption controller web service is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information...

The vulnerability of Intel Xeon processors relates to a flaw in the data protection mechanism, which allows attackers to enhance their privileges.

The vulnerability of Intel Xeon processors is related to a breach in the data protection mechanism. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the dt9812 component of the Linux operating system allows a hacker to gain access to confidential information.

The vulnerability of the dt9812 component in the Linux operating system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to access confidential information...

The vulnerability of microprogrammed network adapter software in Intel Ethernet Controller E800 Series devices relates to a flaw in the data protection mechanism, allowing attackers to trigger a service failure.

The vulnerability of microprogrammed network adapters in Intel Ethernet Controller E800 Series devices is related to a breach in data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

The vulnerability of the Mark of the Web mechanism in Windows operating systems allows a hacker to circumvent existing security restrictions.

The vulnerability of the Mark of the Web mechanism in Windows operating systems is related to the breach of data protection mechanisms. Exploiting this vulnerability allows a remote attacker to circumvent existing security restrictions...