EUVD-2021-12243

Malware in sbrugna...

167,000 stolen credit card numbers Exposed via PoS Malware

By Waqas The campaign was discovered in April 2022, but researchers believe the campaign occurred between February 2021 and September 8, 2022. This is a post from HackRead.com Read the original post: 167,000 stolen credit card numbers Exposed via PoS Malware...

Security Updates for Microsoft Excel Products C2R (February 2021)

The Microsoft Excel Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-24067, CVE-2021-24068,...

Kinsing evolves, adds Windows to attack list

The campaign was first seen by the Akamai SIRT on February 16, 2021, and appears to be targeting both Windows and Linux systems. The botnet caught our interest because it has shown to be highly active across a diverse set of geographical regions, including the Americas, Europe, and Asia...

Security Bulletin: A vulnerability in the IBM® SDK, Java™ Technology Edition affects IBM Tivoli Network Manager CVE-2020-14782.

Summary A vulnerability exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Manager IP Edition v4.2, which was disclosed in the Oracle October 2020 Critical Patch Update, but deferred until the release associated with the IBM February 2021 Critical Patch...

CVE-2021-25347

Hijacking vulnerability in Samsung Email application version prior to SMR Feb-2021 Release 1 allows attackers to intercept when the provider is executed...

Samsung mobile devices 输入验证错误漏洞

Samsung mobile devices is a cell phone application from Samsung South Korea. It provides a communication function. A security vulnerability exists in Samsung mobile devices prior to SMR Feb-2021 Release 1, which stems from an incorrect input check, which would result in a permanent denial of...

SAMSUNG keyboard 安全漏洞

Samsung keyboard is a cell phone application from Samsung South Korea. It provides an input function. A security vulnerability exists in Samsung keyboard version prior to SMR Feb-2021 Release 1, which allows a close-range attacker to change arbitrary settings during the initialization state. No...

Azure File Sync Agent v11.2 Release – February 2021 (KB4539952)

Update for Azure File Sync agent version 11.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v11.2 Release – February 2021 (KB4539952)

Update for Azure File Sync agent version 11.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v11.2 Release – February 2021 (KB4539952)

Update for Azure File Sync agent version 11.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Samsung SMR 安全漏洞

Samsung Mobile MobileWips is an application from Samsung Mobile, a South Korean company. It provides an application that comes with Samsung cell phones. A security vulnerability exists in SMR Feb-2021 Release 1 that allows unauthorized operations, including denial-of-service attacks, by hijacking...

Citrix Endpoint Management (aka XenMobile Server) 10.13.0 Rolling Patch 2

Package name:xms10.13.0.10212.bin For: XenMobile Server 10.13.0 Deployment type: On-premises only Replaces:xms10.13.0.10129.bin Date:February, 2021 Languages supported:English US Readme version:1.00 Readme Revision History Version| Date| Change Description ---|---|--- 1.00| February, 2021| Initia...

Unspecified Vulnerability in Rust (CNVD-2021-13650)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in versions of Rust prior to 2021-02-04, and no details of the vulnerability are available at this time...

CVE-2021-20406

creationtimestamp| type| source ---|---|--- 2021-02-12 20:43:48+00:00| seen| https://t.me/cibsecurity/23551...

CVE-2021-1722

creationtimestamp| type| source ---|---|--- 2021-02-12 12:57:54+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2687 2021-02-26 02:38:15+00:00| seen| https://t.me/cibsecurity/24157 2021-02-26 02:44:16+00:00| seen| https://t.me/cibsecurity/24176...

CVE-2017-9182

creationtimestamp| type| source ---|---|--- 2021-02-12 00:42:59+00:00| seen| https://t.me/cibsecurity/23506 2021-02-12 00:46:18+00:00| seen| https://t.me/VulnerabilityNews/20224...

Null pointer dereference

A Null Pointer Dereference vulnerability in McAfee Endpoint Security ENS for Windows prior to 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial protection prior to th...

Information disclosure

Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security ENS for Windows prior to 10.7.0 February 2021 Update allows a local user to view ENS settings and credentials via accessing process memory after the ENS administrator has performed specific actions. To...

PT-2021-15582 · Mcafee · Mcafee Endpoint Security (Ens) For Windows

Name of the Vulnerable Software and Affected Versions: McAfee Endpoint Security ENS for Windows versions prior to 10.7.0 February 2021 Update Description: The issue concerns improper access control in an attribute, allowing an authenticated local administrator user to uninstall the anti-malware...