The vulnerability of the Windows operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Hyper-V hardware virtualization technology in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, operating locally, to obtain confidential information through a specially created...

The vulnerability of the Silverlight software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Silverlight software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism by using a specially crafted web page...

The vulnerabilities of the data backup and application protection tools IBM Spectrum Protect Snapshot, as well as the virtual machine protection tools IBM Spectrum Protect for Virtual Environments, allow attackers to enhance their privileges.

The vulnerability of the Data Protection component in data backup and application solutions from IBM Spectrum Protect Snapshot, as well as in virtual machine protection solutions from IBM Spectrum Protect for Virtual Environments, is related to deficiencies in access control. Exploiting this...

Threat Outbreak Alert RuleID22095: Email Messages Distributing Malicious Software on April 5, 2016

Medium Alert ID: 44501 First Published: 2016 April 6 13:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID22095 may contain the following files: Name | Siz...

Linux kernel vulnerabilities that allow attackers to access protected information

The vulnerability of the pagemapopen function fs/proc/taskmmu.c in Linux kernels is related to the lack of protection for service data. Exploiting this vulnerability could allow a local attacker to gain access to protected information by reading the pagemap file...

The vulnerability of the HP System Management Homepage software allows a perpetrator to obtain confidential information.

The vulnerability of the HP System Management Homepage software relates to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information...

The vulnerability of the Apache Tomcat application server allows attackers to bypass access restrictions and execute arbitrary HTTP requests.

The vulnerability of the Apache Tomcat application server is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass access restrictions and read arbitrary HTTP requests through a specially created web application...

Threat Outbreak Alert RuleID21648: Email Messages Distributing Malicious Software on March 11, 2016

Medium Alert ID: 44061 First Published: 2016 March 11 14:59 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID21648 may contain the following files: Name | Si...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the libstagefright library in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, acting remotely, to obtain confidential information or bypass security mechanisms...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the System Server component in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information through a specially created application...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the libstagefright library in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, acting remotely, to obtain confidential information or bypass security mechanisms...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the Android operating system’s Native Frameworks library relates to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to obtain confidential information or bypass security mechanisms...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information or bypass security mechanisms

The vulnerability of the libstagefright library in the Android operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, acting remotely, to obtain confidential information or bypass security mechanisms...

The vulnerability of the Cisco Identity Services Engine, a platform for managing network policies, and the Cisco Secure Access Control System, a software solution for access control, allows attackers to obtain confidential information.

The vulnerability of the Cisco Identity Services Engine, a platform for managing network policies, and the Cisco Secure Access Control System, a access control software, is related to the lack of protection for sensitive data. Exploiting this vulnerability can allow an attacker, operating remotel...

The vulnerability of the Microsoft .NET Framework software platform, which allows a perpetrator to obtain confidential information

The vulnerability of the WinForms component of the Microsoft .NET Framework is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to obtain confidential information using specially crafted data...

Design/Logic Flaw

The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka...

CVE-2015-7425

The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka...

CVE-2015-7425

The CVE-2015-7425 issue affects IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (Spectrum Protect for Virtual Environments) and Tivoli Storage FlashCopy Manager for VMware. The IBM advisory confirms an unauthenticated remote attacker can cause backend functions to ...

CVE-2015-7425

The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware aka Spectrum Protect for Virtual Environments 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware aka...