119 matches found
DEBIAN-CVE-2023-46837
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
DEBIAN-CVE-2023-34321
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...
CVE-2023-41284
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later...
reach-on.de Improper Access Control vulnerability OBB-3772649
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SUSE CVE-2023-46752
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...
DEBIAN-CVE-2023-46752
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...
AZL-34692 CVE-2023-46752 affecting package frr for versions less than 9.1-2
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...
AZL-31700 CVE-2023-46752 affecting package frr for versions less than 8.5.3-3
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...
UBUNTU-CVE-2023-46752
An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MPREACHNLRI data, leading to a crash...
FRRouting FRR Security Vulnerabilities
FRRouting FRR is a suite of software that implements and manages various IPV4 and IPV6 routing protocols. A security vulnerability exists in FRRouting FRR 9.0.1 and prior versions that stems from incorrectly processing incorrectly formatted MPREACHNLRI data, which can cause a crash...
Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware
The Chinese cyber espionage actor known as Camaro Dragon has been observed leveraging a new strain of self-propagating malware that spreads through compromised USB drives. "While their primary focus has traditionally been Southeast Asian countries, this latest discovery reveals their global reach...
PT-2023-21319 · Unknown · Code-Projects Bus Dispatch/Information System
Name of the Vulnerable Software and Affected Versions: code-projects Bus Dispatch and Information System version 1.0 Description: A critical issue was found in the code-projects Bus Dispatch and Information System. This issue affects an unknown part of the file adminHome.php. The manipulation of...
Bus Dispatch and Information System SQL注入漏洞
Bus Dispatch and Information System is a bus dispatch and information system. A SQL injection vulnerability exists in Bus Dispatch and Information System version 1.0, which stems from unknown functionality in adminHome.php that causes sql injection via the parameter reachcity...
Snake a Stealthy Cyber-Espionage Malware
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Snake is a powerful cyber-espionage malware developed by FSB & linked to Turla hackers. Boasts high stealth, rigorous engineering & global reach. To receive real-time threat advisories, please follow...
CVE-2023-1499
A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...
Simple Art Gallery SQL注入漏洞
Simple Art Gallery is an art gallery application from Simple Art Gallery, Inc. code-projects An SQL injection vulnerability exists in Simple Art Gallery version 1.0, which stems from a problem with an unknown function in the file adminHome.php, where manipulation of the parameter reachcity can...
PT-2023-17035 · Unknown · Code-Projects Simple Art Gallery
Name of the Vulnerable Software and Affected Versions: code-projects Simple Art Gallery version 1.0 Description: A critical vulnerability was found in the code-projects Simple Art Gallery. The issue affects an unknown functionality of the file adminHome.php. The manipulation of the reach city...
CVE-2023-25768
A missing permission check in Jenkins Azure Credentials Plugin 253.v887e0f9e898b and earlier allows attackers with Overall/Read permission to connect to an attacker-specified web server...
SUSE CVE-2010-5328
include/linux/inittask.h in the Linux kernel before 2.6.35 does not prevent signals with a process group ID of zero from reaching the swapper process, which allows local users to cause a denial of service system crash by leveraging access to this process group...
Talos Year in Review 2022
This report represents an unprecedented effort within Cisco to tell a comprehensive story of our work in the past year, relying on a wide variety of data and expertise. Download the Report As a large security organization with global reach, the data we use as the basis for our research presents u...