1247 matches found
Newly Uncovered PyPI Package Drops Fileless Cryptominer to Linux Systems
A now-removed rogue package pushed to the official third-party software repository for Python has been found to deploy cryptominers on Linux systems. The module, named "secretslib" and downloaded 93 times prior to its deletion, was released to the Python Package Index PyPI on August 6, 2022 and i...
CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added a recently disclosed security flaw in the UnRAR utility to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. Tracked as CVE-2022-30333 CVSS score: 7.5, the issue concerns a path...
VulnCheck KEV: CVE-2022-30333
RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract unpack operation...
The vulnerability of clients for conducting real-time audio and video conferences via Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows allows a perpetrator to disclose protected information.
The vulnerability of clients for conducting real-time audio and video conferences using Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows involves the disclosure of information. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...
Podman 安全漏洞
Podman is an engine for developing, managing and running OCI containers on Linux systems. A security vulnerability exists in Podman and Varlink version 1.5.1, which stems from a problem with the component API. An attacker can exploit the vulnerability to achieve privilege escalation...
dbus-broker-29 Memory Corruption
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Memory Corruption Vulnerabilities product: dbus-broker vulnerable version: dbus-broker-29 fixed version: dbus-broker-31 CVE number: CVE-2022-31212, CVE-2022-3121...
New Sysrv-k Botnet Infecting Windows and Linux Systems with Cryptominer
By Deeba Ahmed Microsoft has discovered a new Sysrv botnet variant deploying cryptocurrency miners on Windows and Linux systems. The Microsoft… This is a post from HackRead.com Read the original post: New Sysrv-k Botnet Infecting Windows and Linux Systems with Cryptominer...
Exploit for Path Traversal in Vmware Cloud_Foundation
CVE-2021-21972 VMware vCenter Server Remote Code Execution Vul...
CVE-2021-3982
Linux distributions using CAPSYSNICE for gnome-shell may be exposed to a privilege escalation issue. An attacker, with low privilege permissions, may take advantage of the way CAPSYSNICE is currently implemented and eventually load code to increase its process scheduler priority leading to possib...
Rip Raw - Small Tool To Analyse The Memory Of Compromised Linux Systems
Rip Raw is a small tool to analyse the memory of compromised Linux systems. It is similar in purpose to Bulk Extractor, but particularly focused on extracting system Logs from memory dumps from Linux systems. This enables you to analyse systems without needing to generate a profile. This is not a...
Podman 权限许可和访问控制问题漏洞
Podman is an engine for developing, managing, and running OCI containers on Linux systems. Podman suffers from a privilege elevation vulnerability, which stems from improperly managed runtime permissions and can be exploited by attackers to elevate the privileges of the system...
Oh Snap! More Lemmings: Local Privilege Escalation Vulnerability Discovered in snap-confine (CVE-2021-44731)
The Qualys Research Team has discovered multiple vulnerabilities in the snap-confine function on Linux operating systems, the most important of which can be exploited to escalate privilege to gain root privileges. Qualys recommends security teams apply patches for these vulnerabilities as soon as...
Docker log information leakage vulnerability
Docker is an open source application container engine from the U.S. company Docker. The product supports creating a container lightweight virtual machine and deploying and running applications on Linux systems, as well as automating the installation, deployment and upgrade of applications through...
RecoverPy - Interactively Find And Recover Deleted Or Overwritten Files From Your Terminal
You can already find plenty of solutions to recover deleted files, but it can be a hassle to recover overwritten files. RecoverPy searches through every block of your partition to find your request. Demo Installation RecoverPy is currently only available on Linux systems. Dependancies Mandatory...
Docker code injection vulnerability
Docker is an open source application container engine from the U.S. company Docker. The product supports creating a container lightweight virtual machine and deploying and running applications on Linux systems, as well as automating the installation, deployment, and upgrade of applications throug...
Octopus Server 配置错误漏洞
Octopus Server is an automated deployment platform. A misconfiguration vulnerability exists in Octopus Tentacle that stems from a misconfiguration of the product's systemd file on Linux systems. An attacker could gain privileged access by modifying the systemd file. The following products and...
The vulnerability of the uClibc library in Linux-based operating systems, related to the possibility of integer overflow, allows attackers to execute arbitrary code.
The vulnerability of the uClibc library in Linux-based operating systems is related to the possibility of integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2017-5123
Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...
Popular NPM Package Hijacked to Publish Crypto-mining Malware
The U.S. Cybersecurity and Infrastructure Security Agency on Friday warned of crypto-mining and password-stealing malware embedded in "UAParser.js," a popular JavaScript NPM library with over 6 million weekly downloads, days after the NPM repository moved to get rid of three rogue packages that...
Beware- FontOnLake Rootkit Malware Attacking Linux Systems
By Deeba Ahmed According to ESET's researchers, components of FontOnLake malware are divided into three groups: Trojamized app, Rootkit, and Backdoor. This is a post from HackRead.com Read the original post: Beware- FontOnLake Rootkit Malware Attacking Linux Systems...