Brazil Halts Meta's AI Data Processing Amid Privacy Concerns

Brazil's data protection authority, Autoridade Nacional de Proteção de Dados ANPD, has temporarily banned Meta from processing users' personal data to train the company's artificial intelligence AI algorithms. The ANPD said it found "evidence of processing of personal data based on inadequate leg...

The vulnerability of software products for processing data from Atlassian Jira Data Center and Jira Server lies in the insufficient protection of operational data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of software products for processing data from Atlassian Jira Data Center and Jira Server lies in the insufficient protection of operational data. Exploiting this vulnerability can allow unauthorized actors to gain unauthorized access to protected information...

CVE-2024-24791 vulnerabilities

Vulnerabilities for packages: datadog-agent, restic-fips, caddy, fulcio, http-echo, kube-bench, opa, rabbitmq-messaging-topology-operator, kube-state-metrics, git-lfs, prometheus-beat-exporter-fips, snyk-cli, metacontroller, velero-plugin-for-aws-fips, gatekeeper-fips, ko-fips, newrelic-nri-stats...

Dell / EMC Avamar Detection Consolidation

Consolidation of Dell / EMC Avamar detections. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; ifdescription...

PT-2024-6637 · Jetbrains · Jetbrains Teamcity +1

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.03.3 Description: The issue is related to insufficient protection of registration data in the EC2 Cloud Profile module of the JetBrains TeamCity continuous integration and delivery CI/CD system...

PT-2024-4827 · Jetbrains · Teamcity

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.03.3 Description: The issue is related to insufficient protection of registration data in the continuous integration and delivery CI/CD system, allowing a remote attacker to gain unauthorized access t...

The vulnerability of the Python package for creating Gradio applications, related to insufficient protection of sensitive data, allows attackers to gain access to user credentials.

The vulnerability of the Python package used for creating Gradio applications for machine learning models is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker operating remotely to gain access to user credentials...

The vulnerability of the NVIDIA GPU Display Driver software driver allows a hacker to disclose protected information.

The vulnerability of the NVIDIA GPU Display Driver software driver is related to insufficient protection for sensitive data. Exploiting this vulnerability allows an attacker to disclose protected information...

Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty may affect may affect IBM Storage Protect for Virtual Environments: Data Protection for Hyper-V

Summary IBM Storage Protect for Virtual Environments: Data Protection for Hyper-V can be affected by a security flaw in IBM WebSphere Application Server Liberty. The flaw can lead to weaker than expected security for outbound TLS connections, as described in the "Vulnerability Details" section...

Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty may affect IBM Storage Protect for Virtual Environments: Data Protection for VMware

Summary IBM Storage Protect for Virtual Environments: Data Protection for VMware can be affected by a security flaw in IBM WebSphere Application Server Liberty. The flaw can lead to weaker than expected security for outbound TLS connections, as described in the "Vulnerability Details" section...

Dell PowerProtect Data Domain Directory Traversal Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A directory traversal vulnerability exists in Dell PowerProtect Data Domain, which could be exploited by an attacker to cause an application to send unauthorized...

Dell PowerProtect Data Domain Log Information Disclosure Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A log information disclosure vulnerability exists in Dell PowerProtect Data Domain, which could be exploited by an attacker to cause reuse of publicly available...

Dell PowerProtect Data Domain Server-Side Request Forgery Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A server-side request forgery vulnerability exists in Dell PowerProtect Data Domain, which could be exploited by an attacker to cause information disclosure in an...

Dell PowerProtect Data Domain Cross-Site Scripting Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A cross-site scripting vulnerability exists in Dell PowerProtect Data Domain, which can be exploited by an attacker to inject malicious HTML or JavaScript code...

Dell PowerProtect Data Domain OS Command Injection Vulnerability (CNVD-2024-31085)

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. An operating system command injection vulnerability exists in Dell PowerProtect Data Domain, which can be exploited by an attacker to execute arbitrary operating...

Dell PowerProtect Data Domain Improper Resource Control Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A resource miscontrol vulnerability exists in Dell PowerProtect Data Domain, which can be exploited by an attacker to cause a denial of service...

Dell PowerProtect Data Domain Weak Encryption Algorithm Vulnerability

Dell PowerProtect Data Domain is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell USA. A weak cryptographic algorithm vulnerability exists in Dell PowerProtect Data Domain, which could be exploited by an attacker to cause a man-in-the-middle attack,...

PT-2024-7447 · Sap · Sap Landscape Management

Name of the Vulnerable Software and Affected Versions: SAP Landscape Management affected versions not specified Description: The issue is related to the REST Provider Definition response in SAP Landscape Management, which allows an authenticated user to read confidential data. This can cause a hi...

The vulnerability of the on-premise resource planning software of Microsoft Dynamics 365 involves insufficient protection for operational data, allowing attackers to disclose sensitive information.

The vulnerability of the on-premise resource planning software of Microsoft Dynamics 365 is related to insufficient protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose sensitive information...

Stolen Singaporean Identities Sold on Dark Web Starting at $8

Singapore citizens, beware! Cybercriminals are targeting your digital identities and KYC data, starting at just $8, putting users at risk of exploitation. Learn how to protect your data, finances, and reputation with strong passwords, multi-factor authentication, and smart online habits...