7762 matches found
Fedora 38 : golang-github-docker-distribution (2022-59cb9da3d4)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-59cb9da3d4 advisory. Automatic update for golang-github-docker-distribution-2.8.1-2.20220821gitbc6b745.fc38. Changelog Sun Aug 21 2022 Robert-Andr Mauchin 2.8.1-2 - Upda...
The vulnerability in the set of development libraries for Intel Distribution for GDB software relates to an uncontrolled search path element, which allows a malicious actor to escalate their privileges.
The vulnerability in the set of development libraries for Intel Distribution for GDB software is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow an attacker to increase their privileges...
The vulnerability of the Kerberos Key Distribution Center (KDC) Proxy Protocol implementation in Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the Kerberos Key Distribution Center KDC Proxy Protocol implementation in Windows operating systems is related to numerical truncation errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter allows a attacker to trigger a service failure.
The vulnerability of the Action Dispatch component in the Action Pack extension’s Ruby interpreter involves unlimited distribution of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
CVE-2024-32048
Improper input validation in the IntelR Distribution of OpenVINOTM Model Server software before version 2024.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access...
CVE-2024-29083
Incorrect default permissions in some IntelR Distribution for Python software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-29083
Incorrect default permissions in some IntelR Distribution for Python software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-29083
Incorrect default permissions in some IntelR Distribution for Python software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-29083
CVE-2024-29083 concerns Intel® Distribution for Python software before version 2024.2, where incorrect default permissions may allow an authenticated user to escalate privileges via local access. The advisory and related records describe affected product: Intel Distribution for Python before 2024...
Intel Distribution for Python 安全漏洞
Intel Distribution for Python is a Python distribution from Intel Corporation USA optimized for Intel hardware. A security vulnerability exists in Intel Distribution for Python versions prior to 2024.2, which stems from incorrect default permissions. An attacker can exploit the vulnerability to...
CVE-2024-43639
Windows KDC Proxy Remote Code Execution Vulnerability...
LodaRAT: Established Malware, New Victim Patterns
Executive Summary Rapid7 has observed an ongoing malware campaign involving a new version of LodaRAT. This version possesses the ability to steal cookies and passwords from Microsoft Edge and Brave. LodaRAT, first observed in 2016, is a remote access tool RAT written in AutoIt. Development of...
[BSA-120] Security Update for mosquitto
Philippe Coval uploaded new packages for mosquitto which fixed the following security problems: CVE-2024-8376 In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of "CONNECT", "DISCONNECT",...
Microsoft SQL Server 资源管理错误漏洞
Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A resource management error vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products a...
PT-2024-8838 · Intel · Intel Distribution For Python
Name of the Vulnerable Software and Affected Versions: Intel Distribution for Python versions prior to 2024.2 Description: The issue is related to incorrect default permissions in the Intel Distribution for Python software. This can potentially allow an authenticated user to escalate their...
Intel® Distribution for Python Software Advisory
Summary: A potential security vulnerability in some Intel® Distribution for Python software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-29083 Description: Incorrect default permissions in...
Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar
Description Name : CVE-2023-38831 CVSS Score : 7.8...
[SECURITY] [DSA 5806-1] libarchive security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5806-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 09, 2024 https://www.debian.org/security/faq -...
Hello again, FakeBat: popular loader returns after months-long hiatus
The web browser, and search engines in particular, continue to be a popular entry point to deliver malware to users. While we noted a decrease in loaders distributed via malvertising for the past 3 months, today's example is a reminder that threat actors can quickly switch back to tried and teste...
New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency
Introduction In August 2024, our team identified a new crimeware bundle, which we named "SteelFox". Delivered via sophisticated execution chains including shellcoding, this threat abuses Windows services and drivers. It spreads via forums posts, torrent trackers and blogs, imitating popular...