118 matches found
CVE-2022-2675
Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 using firmware version 0.1.35 can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1...
Malicious code in spaces-reach (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a237e8f4b50a9a2bba67fbd5b0fc10f1e8850b911858d33bef97d19ec615948f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6227 Malicious code in spaces-reach (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a237e8f4b50a9a2bba67fbd5b0fc10f1e8850b911858d33bef97d19ec615948f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-31215
In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of up to 30 seconds. This affects Goverlan Reach Console before 10.5.1, Reach Server before 3.70.1,...
CVE-2022-31215
In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of up to 30 seconds. This affects Goverlan Reach Console before 10.5.1, Reach Server before 3.70.1,...
多款Goverlan产品安全漏洞
Goverlan Reach Console is a software-based, self-hosted IT remote support solution. Goverlan Reach Server is the central organization for all Goverlan services. Goverlan Reach Server is the central organization for all Goverlan services. Goverlan Client Agent is a secure, low footprint,...
tpm2-tools security and enhancement update
4.1.1-5 - Bump nvr to trigger osci. resolves: rhbz1965981 4.1.1-4 - Fix CVE-2021-3565 resolves: rhbz1965981 4.1.1-3 - Fix resource leak. - Fix to restrict policy digest size. - Fix incompatible pointer cast. - Fix error message in filesloadname - Fix issue where execution couldnt reach function...
Is It Time to Consider Replacing Your CDN?
Content delivery networks CDNs are the pipelines of the Internet. Working behind the scenes, they are reshaping how information is consumed online, accelerating web traffic, enhancing user experience, and providing every website with the ability to truly go global. As you may imagine, any...
File Upload Vulnerability in Fast Reach CMS (CNVD-2021-30409)
Fast Row CMS is open source and free PHP enterprise website production, construction, development and optimization of SEO management system. FPS CMS has a file upload vulnerability that can be exploited by attackers to gain control of the server...
Akamai Focused on "What's Next" Following New Traffic Milestone
Akamai hit a new milestone last week when web traffic delivered across our edge network peaked at 200 terabits per second Tbps. To be blunt - that's a whole lot of data traveling the world in a very short amount of time. We believe we can make a good case that it's more than the entire reported...
BEC Attacks: Nigeria No Longer the Epicenter as Losses Top $26B
A study of more than 9,000 instances of business email compromise BEC attacks all over the world shows that the number has skyrocketed over the past year, and that the social-engineering scam has expanded well beyond its historic roots in Nigeria. The report from Agari’s Cyber Intelligence Divisi...
Citrix Systems XenMobile Server Access Control Error Vulnerability
Citrix Systems XenMobile Server is a mobility management solution from Citrix Systems. The solution is able to manage mobile devices, develop mobile policies and compliance rules, and gain insight into the operation of mobile mobile networks. A security vulnerability exists in Citrix Systems...
PROMETHIUM extends global reach with StrongPity3 APT
By Warren Mercer, Paul Rascagneres and Vitor Ventura. News summaryThe threat actor behind StrongPity is not deterred despite being exposed multiple times over the past four years.They continue to expand their victimology and attack seemingly non related countries.This kind of continuous improveme...
Change the Rules Speaker Event
Akamai's Women's Forum Americas, OHANA and In Reach Employee Resource Groups recently hosted Cross ERG 'Change the Rules' Keynote - Celebration of Black History Month in our Chicago office. We were excited to have notable Michelle Silverthorn, CEO of Inclusion Nation, a company that focuses on...
CVE-2019-20456
Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking...
CVE-2019-20456
Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking...
Command injection
Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking...
CVE-2019-20456
Goverlan Reach Console before 9.50, Goverlan Reach Server before 3.50, and Goverlan Client Agent before 9.20.50 have an Untrusted Search Path that leads to Command Injection and Local Privilege Escalation via DLL hijacking...
CVE-2019-20456
CVE-2019-20456 affects Goverlan Reach Console prior to 9.50, Goverlan Reach Server prior to 3.50, and Goverlan Client Agent prior to 9.20.50. The issue is an Untrusted Search Path that enables Command Injection and Local Privilege Escalation via DLL hijacking. Root cause: DLL search order hijack ...
Why Our Customers Love VMware Carbon Black
As the cybersecurity world advances, organizations are starting to change their approach to security. More and more teams are moving to the cloud to maximize their endpoint protection and simplify their security stack. Using VMWare Carbon Black's Cloud platform, our customers are able to...