CVE-2020-10368

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory read access via a "Spectra" attack...

CVE-2020-10368

CVE-2020-10368 affects Cypress (and Broadcom) Wireless Combo chips. Affected component is the Wireless Combo firmware prior to the January 2021 update, which allows memory read access via a Spectra attack when the firmware update is not present. The vulnerability is tied to the Cypress/Broadcom w...

PT-2024-10761 · Cypress +1 · Cypress Wireless Combo Chips +1

Name of the Vulnerable Software and Affected Versions: Cypress and Broadcom Wireless Combo chips versions prior to the January 2021 firmware update Description: The issue allows memory read access via a "Spectra" attack when a January 2021 firmware update is not present. This affects specific...

CVE-2020-10369

CVE-2020-10369 affects Cypress (and Broadcom) Wireless Combo chips. The connected Red Hat, CIRCL, NVD and related feeds describe a memory-content inference vulnerability via a Spectra attack when a January 2021 firmware update is not present. The vulnerability is tied to these wireless combo comp...

CVE-2020-10367

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...

SUSE CVE-2020-10367

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...

SUSE CVE-2020-10369

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow inferences about memory content via a "Spectra" attack...

Security Updates for Microsoft Office Products C2R (January 2021)

The Microsoft office Product is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Office Remote Code Execution Vulnerability CVE-2021-1711 - Microsoft Excel Remote Code Execution Vulnerability CVE-2021-1714 - Microsoft Word Remote Code Execution...

Rebirth of Emotet: New Features of the Botnet and How to Detect it

One of the most dangerous and infamous threats is back again. In January 2021, global officials took down the botnet. Law enforcement sent a destructive update to the Emotet's executables. And it looked like the end of the trojan's story. But the malware never ceased to surprise. November 2021, i...

mysql: InnoDB unspecified vulnerability (CPU Jan 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server...

SUSE: Security Advisory (SUSE-SU-2021:0275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime may affect Tivoli Netcool Performance Manager for Wireless,Oracle January 2021 CPU

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 & 8 used by Tivoli Netcool Performance Manager for Wireless. Tivoli Netcool Performance Manager for Wireless has addressed the applicable CVEs.These issues were disclosed as part of the IBM Java SDK updates in...

SUSE: Security Advisory (SUSE-SU-2021:0665-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for java-11-openjdk (openSUSE-SU-2021:0269-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for java-1_8_0-openjdk (openSUSE-SU-2021:0374-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Operational Decision Manager (Oct 2020 and Jan 2021 CPUs)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 and 8 that is used by IBM Operational Decision Manager ODM. These issues were disclosed as part of the IBM Java SDK updates in October 2020 and and in January 2021. Vulnerability Details CVEID: CVE-2020-147...

三星 Samsung quram 缓冲区错误漏洞

Samsung quram is a cell phone application from Samsung South Korea. It provides a translation function. A security vulnerability exists in the quram library version prior to SMR Jan-2021 Release 1, which can be exploited by an attacker to overwrite arbitrary memory and allow arbitrary code...

Security update for java-1_8_0-openjdk (moderate)

openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:0374-1 Rating: moderate References: 1181239 Cross-References: CVE-2020-14803 CVSS scores: CVE-2020-14803 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-14803 SUSE: 5.3...

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI - January 2021 CPU plus deferred CVE-2020-14782, CVE-2020-14781 and CVE-2020-2773

Summary Websphere Application Server WAS is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about security vulnerabilities affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On January 2021 CPU

Summary IBM WebSphere Application Server is shipped with IBM Security Access Manager for Enterprise Single Sign-On. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletin...