org.apache.pulsar:pulsar-server-distribution (=3.1.0) potentially affected by CVE-2023-51437 via org.apache.pulsar:pulsar-broker-auth-sasl (=3.1.0)

org.apache.pulsar:pulsar-broker-auth-sasl MAVEN version =3.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.pulsar:pulsar-broker-auth-sasl and may be impacted: - org.apache.pulsar:pulsar-server-distribution =3.1.0 Source cves:...

JVN#44033918: Zeroshell vulnerable to OS command injection

The web interface of Zeroshell, Linux distribution provided by Zeroshell.org, contains an OS command injection vulnerability CWE-78. Impact Processing a crafted HTTP request may lead to an arbitrary OS command execution. Solution Stop using the product The developer states that the affected produ...

The vulnerability of the Jackson-databind library in the FasterXML project allows a hacker to induce a service failure.

The vulnerability of the Jackson-databind library in the FasterXML project is related to the unlimited distribution of resources. Exploiting this vulnerability could allow a attacker to cause a service failure...

Known ransomware attacks up 68% in 2023

Today, Malwarebytes released its 2024 State of Malware report, detailing six cyberthreats that resource-constrained IT teams should pay attention to in 2024. Top of the list is "Big Game" ransomware, the most serious cyberthreat to businesses all around the world. Big game attacks extort vast...

CVE-2024-24937

In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible...

CVE-2024-24937

In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible...

Cross site scripting

In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible...

CVE-2024-24937

JetBrains TeamCity Server prior to 2023.11.2 is affected by a stored cross-site scripting (XSS) vulnerability stemming from agent distribution. The issue allows XSS through the agent distribution channel, as described in CVE-2024-24937 and corroborated by multiple sources referencing TeamCity’s p...

CVE-2024-24937

In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible...

CVE-2024-24937

In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible...

JetBrains TeamCity 安全漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. JetBrains TeamCity suffers from a cross-site...

CVE-2023-27318

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

CVE-2023-27318

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

Denial of service

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

CVE-2023-27318 Denial of Service Vulnerability in StorageGRID (formerly StorageGRID Webscale)

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

CVE-2023-27318 Denial of Service Vulnerability in StorageGRID (formerly StorageGRID Webscale)

StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

Patchwork Using Romance Scam Lures to Infect Android Devices with VajraSpy Malware

The threat actor known as Patchwork likely used romance scam lures to trap victims in Pakistan and India, and infect their Android devices with a remote access trojan called VajraSpy. Slovak cybersecurity firm ESET said it uncovered 12 espionage apps, six of which were available for download from...

PT-2024-12127 · Netapp · Storagegrid

Name of the Vulnerable Software and Affected Versions: StorageGRID formerly StorageGRID Webscale versions 11.6.0 through 11.6.0.13 Description: The issue is a Denial of Service DoS vulnerability. A successful exploit could lead to a crash of the Local Distribution Router LDR service...

The vulnerability of the HTTP library for Rust Hyper, related to unlimited resource distribution, allows attackers to cause service failures.

The vulnerability of the HTTP library for Rust Hyper relates to the unlimited distribution of resources. Exploiting this vulnerability could allow a remote attacker to cause service failures...

firefox security update

115.7.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.7.0-1 - Update to 115.7.0 build1...