CVE-2019-20592

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. There is local SQL injection in the Story Video Editor Content Provider. The Samsung ID is SVE-2019-14062 July 2019...

CVE-2019-20776

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software. A TZ trusted application can crash via crafted input. The LG ID is LVE-SMP-190005 July 2019...

EUVD-2019-11315

Malware in sbrugna...

CVE-2019-20594

An issue was discovered on Samsung mobile devices with O8.1 and P9.0 Exynos chipsets software. A heap overflow exists in the bootloader. The Samsung ID is SVE-2019-14371 July 2019...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager July 2019 CPU (CVE-2019-2816, CVE-2019-11771, CVE-2019-4473)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Tivoli System Automation Application Manager 4.1.0.0 - 4.1.0.1 . These issues were disclosed as part of the IBM Java SDK updates in July 2019. There are multiple vulnerabilities in IBM® SDK Java...

Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Digital Business Automation Workflow family products (Java CPU July 2019)

Summary WebSphere Application Server is shipped as a component of IBM Business Automation Workflow, IBM Business Process Manager, WebSphere Enterprise Service Bus, and WebSphere Lombardi Edition. WebSphere Application Server Liberty is shipped as a component of the optional BPM component Process...

Security Updates for Microsoft Office Products C2R (July 2019)

The Microsoft Office Products are missing security updates. They are, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could...

Researchers Uncover Brazilian Hacktivist's Identity Who Defaced Over 4800 Sites

It's one thing for hackers to target websites and proudly announce it on social media platforms for all to see. It's, however, an entirely different thing to leave a digital trail that leads cybersecurity researchers right to their doorsteps. That's exactly what happened in the case of a hacktivi...

Oracle WebCenter Sites Multiple Vulnerabilities (July 2019 CPU)

Oracle WebCenter Sites component of Oracle Fusion Middleware is vulnerable to multiple vulnerabilities : - A deserialization vulnerability exists in the Oracle WebCenter Sites component of Oracle Fusion Middleware subcomponent: Advanced UI Apache Groovy due to a lack of isolation of object...

CVE-2019-20590

An issue was discovered on Samsung mobile devices with O8.x Qualcomm chipsets software. There is an integer underflow in the Secure Storage Trustlet. The Samsung ID is SVE-2019-13952 July 2019...

CVE-2019-20594

An issue was discovered on Samsung mobile devices with O8.1 and P9.0 Exynos chipsets software. A heap overflow exists in the bootloader. The Samsung ID is SVE-2019-14371 July 2019...

CVE-2019-20593

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. Gallery leaks Private Mode thumbnails. The Samsung ID is SVE-2019-14208 July 2019...

CVE-2019-20593

CVE-2019-20593 concerns Samsung mobile devices running N(7.x) or O(8.x) software where the Gallery app leaks Private Mode thumbnails. Public descriptions across multiple sources (NVD entry, Red Hat advisory, CNVD, CVE pages) consistently state the vulnerability involves information disclosure via...

CVE-2019-20595

An issue was discovered on Samsung mobile devices with P9.0 software. Quick Panel allows enabling or disabling the Bluetooth stack without authentication. The Samsung ID is SVE-2019-14545 July 2019...

CVE-2019-20594

An issue was discovered on Samsung mobile devices with O8.1 and P9.0 Exynos chipsets software. A heap overflow exists in the bootloader. The Samsung ID is SVE-2019-14371 July 2019...

CVE-2019-20592

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. There is local SQL injection in the Story Video Editor Content Provider. The Samsung ID is SVE-2019-14062 July 2019...

CVE-2019-20590

CVE-2019-20590 affects Samsung mobile devices running O(8.x) software on Qualcomm chipsets, with an integer underflow in the Secure Storage Trustlet (Samsung ID SVE-2019-13952). Connected sources (Red Hat, NVD, CVE listing) confirm the vulnerable component and root cause as an underflow in Secure...

CVE-2019-20590

An issue was discovered on Samsung mobile devices with O8.x Qualcomm chipsets software. There is an integer underflow in the Secure Storage Trustlet. The Samsung ID is SVE-2019-13952 July 2019...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and IBM App Connect Enterpise v11.

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0.5.37 & Versions 7.0.10.45 used by IBM Integration Bus & IBM App Connect Enterprise v11. These issues were disclosed as part of the IBM Java SDK updates in July 2019 Vulnerability Details CVEID:...

Let's Encrypt Revoking 3 Million TLS Certificates Issued Incorrectly Due to a Bug

The most popular free certificate signing authority Let's Encrypt is going to revoke more than 3 million TLS certificates within the next 24 hours that may have been issued wrongfully due to a bug in its Certificate Authority software. The bug, which Let's Encrypt confirmed on February 29 and was...