The vulnerability of Firefox and Firefox ESR browsers, related to the lack of protection for service data, allows attackers to disclose protected information.

The vulnerability of Firefox and Firefox ESR browsers is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to disclose protected information through the import function...

The vulnerability of the ksmbd module in Linux operating systems allows a perpetrator to gain unauthorized access to protected information or cause service failures.

The vulnerability of the ksmbd module in Linux operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures using the SMB2QUERYINFO and SMB2LOGOFF command...

The vulnerability in the web interface for managing microprogramming software on Cisco Small Business Series switches allows a perpetrator to gain unauthorized access to protected information.

The vulnerability in the web interface for managing microprogrammed software in Cisco Small Business Series switches is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected...

E.U. Regulators Hit Meta with Record $1.3 Billion Fine for Data Transfer Violations

Facebook's parent company Meta has been fined a record $1.3 billion by European Union data protection regulators for transferring the personal data of users in the region to the U.S. In a binding decision taken by the European Data Protection Board EDPB, the social media giant has been ordered to...

E.U. Regulators Hit Meta with Record $1.3 Billion Fine for Data Transfer Violations

Facebook's parent company Meta has been fined a record $1.3 billion by European Union data protection regulators for transferring the personal data of users in the region to the U.S. In a binding decision taken by the European Data Protection Board EDPB, the social media giant has been ordered to...

PT-2023-5816 · Apple · Macos Ventura +5

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions prior to 13.4 tvOS versions prior to 16.5 iOS versions prior to 16.5 iPadOS versions prior to 16.5 watchOS versions prior to 9.5 Description: A privacy issue was addressed with improved handling of temporary files. This...

IBM Spectrum Protect Plus Information Disclosure Vulnerability (CNVD-2023-41895)

IBM Spectrum Protect Plus is a suite of data protection platforms from International Business Machines IBM. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. An information...

PT-2023-2830 · Cisco · Cisco Small Business Series Switches

Name of the Vulnerable Software and Affected Versions: Cisco Small Business Series Switches affected versions not specified Description: The issue is related to insufficient protection of service data in the web interface of Cisco Small Business Series Switches. It may allow a remote attacker to...

The vulnerability of the Windows iSCSI Target service allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Windows iSCSI Target service for Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of Visual Studio Code’s source editor, related to insufficient protection of service data, allows a hacker to execute arbitrary code.

The vulnerability of Visual Studio Code’s source editor is related to insufficient protection for service data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the NTLM Security Support Provider implementation in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NTLM Security Support Provider in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the Microsoft Remote Desktop app for Windows, a remote desktop application, allows a hacker to compromise and access sensitive information.

The vulnerability of the Microsoft Remote Desktop app for Windows involves a lack of protection for mission-critical data. Exploiting this vulnerability can allow an attacker to disclose sensitive information...

The vulnerability of the Windows Bluetooth Driver of the Windows operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Windows Bluetooth Driver in the Windows operating system is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker, acting remotely, to gain unauthorized access to protected information...

Solving Your Teams Secure Collaboration Challenges

In today's interconnected world, where organisations regularly exchange sensitive information with customers, partners and employees, secure collaboration has become increasingly vital. However, collaboration can pose a security risk if not managed properly. To ensure that collaboration remains...

Solving Your Teams Secure Collaboration Challenges

In today's interconnected world, where organisations regularly exchange sensitive information with customers, partners and employees, secure collaboration has become increasingly vital. However, collaboration can pose a security risk if not managed properly. To ensure that collaboration remains...

SUSE-SU-2023:2164-1 Security update for cloud-init

This update for cloud-init contains following fixes: - CVE-2021-3429: Do not write the generated password to the log file. bsc1184758 - CVE-2023-1786: Do not expose sensitive data gathered from the CSP. bsc1210277 Other fixes: - Change log file creation mode to 640. bsc1183939 - Write proper...

The vulnerability of the pre-viewing function for macros in Atlassian Confluence Server and the date of the Confluence Data Center, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the preview function for macros on Atlassian Confluence Server and the Confluence Data Center is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected informati...

CVE-2023-27408

A vulnerability has been identified in SCALANCE LPE9403 All versions V2.1. The i2c mutex file is created with the permissions bits of -rw-rw-rw-. This file is used as a mutex for multiple applications interacting with i2c. This could allow an authenticated attacker with access to the SSH interfac...

PT-2023-2714 · Microsoft +1 · Visual Studio Code +1

Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: The issue is related to insufficient protection of service data in Visual Studio Code. Exploitation of this issue may allow an attacker to execute arbitrary code. Recommendations...

PT-2023-2692 · Microsoft · Windows Ntlm Security Support Provider +1

Name of the Vulnerable Software and Affected Versions: Windows NTLM Security Support Provider affected versions not specified Description: The issue is related to the implementation of the NTLM Security Support Provider protocol in the Windows operating system, which lacks protection for service...