Arcserve Unified Data Protection Security Vulnerability

Arcserve Unified Data Protection is Arcserve's all-in-one data and ransomware protection solution. A security vulnerability exists in Arcserve Unified Data Protection versions 9.2 and 8.1, which originates in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server. An authentication...

PT-2024-15833 · Arcserve · Arcserve Unified Data Protection

Name of the Vulnerable Software and Affected Versions: Arcserve Unified Data Protection versions 8.1 through 9.2 Description: A path traversal issue exists in the edge-app-base-webui.jar, specifically affecting the ImportNodeServlet function. This issue is present in the mentioned versions of...

Arcserve Unified Data Protection Security Vulnerability

Arcserve Unified Data Protection is Arcserve's all-in-one data and ransomware protection solution. A security vulnerability exists in Arcserve Unified Data Protection versions 9.2 and 8.1, which stems from a denial of service vulnerability in ASNative.dll...

PT-2024-2253 · Microsoft · Outlook For Android

Name of the Vulnerable Software and Affected Versions: Outlook for Android affected versions not specified Description: The issue is related to insufficient protection of service data in the Microsoft Outlook for Android client. Exploitation of this issue may allow a remote attacker to gain...

PT-2024-2429 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.19 and earlier Description: The issue is related to an Information Exposure vulnerability that could result in a Security feature bypass, allowing an attacker to gain unauthorized access to sensitive...

Data brokers admit they’re selling information on precise location, kids, and reproductive healthcare

Information newly made available under California law has shed light on data broker practices, including exactly what categories of information they trade in. Any business that meets the definition of data broker must register with the California Privacy Protection Agency CPPA annually. The CPPA...

Guide: On-Prem is Dead. Have You Adjusted Your Web DLP Plan?

As the shift of IT infrastructure to cloud-based solutions celebrates its 10-year anniversary, it becomes clear that traditional on-premises approaches to data security are becoming obsolete. Rather than protecting the endpoint, DLP solutions need to refocus their efforts to where corporate data...

PT-2024-2625 · Unknown · Codeium-Chrome

Name of the Vulnerable Software and Affected Versions: codeium-chrome affected versions not specified Description: The issue is related to the lack of protection for service data in the codeium-chrome plugin. An attacker can exploit this to send arbitrary requests to the internal autocomplete...

CVE-2024-23292

This issue was addressed with improved data protection. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An app may be able to access information about a user's contacts...

CVE-2024-23292

This issue was addressed with improved data protection. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to access information about a user's contacts...

CVE-2024-23275

A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to access protected user data...

Information disclosure

This issue was addressed with improved data protection. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An app may be able to access information about a user's contacts...

Top 4 Essential Strategies for Securing APIs To Block Compromised Tokens

Government bodies are clamping down heavily on institutions and organizations that handle sensitive customer data. For APIs, tokens are used to authenticate users. We live in an era dominated by cloud-native and cloud-first solutions that rely on these services to provide dynamic data storage...

CVE-2024-23292

This issue was addressed with improved data protection. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to access information about a user's contacts...

CVE-2024-23292

This issue was addressed with improved data protection. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to access information about a user's contacts...

CVE-2024-23292

CVE-2024-23292 affects Apple platforms: macOS Sonoma 14.4, iOS 17.4, and iPadOS 17.4. The issue allows an app to access information about a user’s contacts due to inadequate data protection. The root cause is addressed in these updates with improved data protection, and Apple lists the fixed vers...

PT-2024-2313

Name of the Vulnerable Software and Affected Versions Arcserve Unified Data Protection versions 8.1 through 9.2 Description An authentication bypass issue exists in the EdgeLoginServiceImpl.doLogin function within wizardLogin, allowing a remote attacker to bypass the authentication process. This...

Securing the Next Level: Automated Cloud Defense in Game Development with InsightCloudSec

Imagine the following scenario: You're about to enjoy a strategic duel on chess.com or dive into an intense battle in Fortnite, but as you log in, you find your hard-earned achievements, ranks, and reputation have vanished into thin air. This is not just a hypothetical scenario but a real...

PT-2024-2188 · Vmware · Vmware Cloud Director

Name of the Vulnerable Software and Affected Versions: VMware Cloud Director affected versions not specified Description: The issue is related to a partial information disclosure, where a malicious actor can potentially gather information about organization names based on the behavior of the...

PT-2024-19786 · Apple · Macos Sonoma +3

Name of the Vulnerable Software and Affected Versions: macOS Sonoma versions prior to 14.4 iOS versions prior to 17.4 iPadOS versions prior to 17.4 Description: The issue allows an app to access information about a user's contacts due to inadequate data protection. This has been addressed with...