IBM Security Guardium OS Command Injection Vulnerability (CNVD-2024-26499)

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium suffers from an operating system...

Unspecified Vulnerability in IBM Security Guardium (CNVD-2024-24936)

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium has a security vulnerability that ste...

The vulnerability of Microsoft Bing Search’s search engine on the iOS operating system allows attackers to carry out spoofing attacks.

The vulnerability of Microsoft Bing Search’s search engine on the iOS operating system is related to a violation of data protection mechanisms. Exploiting this vulnerability allows an attacker to perform spear-phishing attacks remotely...

The vulnerability of the Compiler component in Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK allows attackers to disclose protected information.

The vulnerability of the Compiler component in Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK relates to insufficient protection of service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...

The vulnerability of the Templates sub-component of Oracle Application Technology, a system for automating business processes in enterprises, allows attackers to gain access to confidential information.

The vulnerability of the Templates sub-component in Oracle Application Technology, a system for automating business operations in enterprises, related to insufficient protection of operational data. Exploiting this vulnerability could allow unauthorized actors to gain access to confidential...

Financial institutions ordered to notify customers after a breach, have an incident response plan

The Securities and Exchange Commission SEC has announced rules around breaches for certain financial institutions—registered broker-dealers, investment companies, investment advisers, and transfer agents— that require them to have written incident response policies and procedures that can be used...

Vulnerabilities of the software for the centralized management of PowerProtect Data Domain Management Centers, the data protection software for corporate environments – PowerProtect Data Protection; the data protection software for data backup through PowerProtect Data Domain; the operating system EMC Data Domain OS; the data protection software for corporate environments using cloud technologies – APEX Protection Storage. These vulnerabilities allow attackers to exploit them to disclose protected information.

The vulnerabilities of the PowerProtect Data Domain Management Center software, a data protection tool for corporate environments, and the PowerProtect Data Protection software for data backup purposes are related to the lack of protection for SQL query structures. Exploiting these vulnerabilitie...

The vulnerability of FortiOS operating systems, related to the lack of protection for service data, allows attackers to disclose the protected information.

The vulnerability of FortiOS operating systems is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by sending specially crafted HTTP requests...

The vulnerability of the disconnectVPN function in the microprogramming software for TOTOLINK X5000R allows a hacker to execute arbitrary commands.

The vulnerability of the disconnectVPN function in the microprogramming software for TOTOLINK X5000R lies in the lack of measures to protect input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Google Launches AI-Powered Theft and Data Protection Features for Android Devices

Google has announced a slew of privacy and security features in Android, including a suite of advanced protection features to help secure users' devices and data in the event of a theft. These features aim to help protect data before, during and after a theft attempt, the tech giant said, adding...

IBM Security Guardium 安全漏洞

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium has a security vulnerability that ste...

PT-2024-3718 · Microsoft +1 · Bing Search +1

Name of the Vulnerable Software and Affected Versions: Microsoft Bing Search affected versions not specified Description: The issue is related to a data protection mechanism flaw in the Microsoft Bing Search system for the iOS operating system. This can be exploited by a remote attacker to conduc...

Dell PowerProtect DM5500 Directory Traversal Vulnerability

Dell PowerProtect DM5500 is an integrated solution from Dell, Inc. It provides industry-leading deduplication, data protection solutions and multi-cloud capabilities. A directory traversal vulnerability exists in Dell PowerProtect DM5500 version 5.15.0.0 and prior versions, which can be exploited...

VulnCheck KEV: CVE-2024-0801

A denial of service vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in ASNative.dll...

VulnCheck KEV: CVE-2024-0799

An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin...

The vulnerability of the WP Encryption plugin in the WordPress content management system allows attackers to disclose protected information.

The vulnerability of the WP Encryption plugin in the WordPress content management system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...

WordPress plugin GDPR Compliance 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

The vulnerability in the implementation of the Keenetic router microprogramming system’s version.js script allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the version.js microprogramming system for Keenetic routers relates to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the ndmComponents.js implementation in Keenetic router software allows a attacker to gain unauthorized access to protected information.

The vulnerability of the ndmComponents.js implementation of the microprogramming software for Keenetic routers is related to insufficient protection of operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the PostgreSQL software component used in Brocade SANnav network management systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PostgreSQL software component used in Brocade SANnav network management systems is related to insufficient protection for registration data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...