60 matches found
Microsoft Windows BitLocker 访问控制错误漏洞
Microsoft Windows BitLocker is a security feature provided by Microsoft that ensures the recovery key is backed up and secure before it is activated. There is an access control vulnerability in Microsoft Windows BitLocker. Attackers can exploit this vulnerability to bypass certain features. The...
Signal users targeted in backup-stealing phishing attacks
A new phishing campaign is targeting Signal users by attempting to steal their backup recovery keys to access encrypted message archives. The attack is initiated by a text message pretending to come from Signal Support. “Action Required: Data Recovery Needed Your Signal account data message and...
CVE-2026-32606 IncusOS has a LUKS encryption bypass due to insufficient TPM policy
IncusOS is an immutable OS image dedicated to running Incus. Prior to 202603142010, the default configuration of systemd-cryptenroll as used by IncusOS through mkosi allows for an attacker with physical access to the machine to access the encrypted data without requiring any interaction by the...
CVE-2026-1344
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
CVE-2026-1344
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
CVE-2026-1344
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
Tanium Enforce Recovery Key Portal 安全漏洞
Tanium Enforce Recovery Key Portal is a component of the US-based Tanium company that allows access to disk encryption recovery keys. There is a security vulnerability in Tanium Enforce Recovery Key Portal, which stems from insecure file permissions. This vulnerability may allow attackers with...
CVE-2026-1344 Insecure file permissions in Enforce Recovery Key Portal
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
CVE-2026-1344
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
CVE-2026-1344 Insecure file permissions in Enforce Recovery Key Portal
Tanium addressed an insecure file permissions vulnerability in Enforce Recovery Key Portal...
CVE-2026-1344
CVE-2026-1344 concerns an insecure file permissions vulnerability in Tanium’s Enforce Recovery Key Portal. The available documents consistently describe insecure file permissions as the underlying issue, with exposure to high confidentiality impact. Concrete details on affected versions, root cau...
PT-2026-20276
Name of the Vulnerable Software and Affected Versions Tanium Enforce Recovery Key Portal affected versions not specified Description An insecure file permissions issue exists in Tanium Enforce Recovery Key Portal. The vulnerability involves incorrect file permissions that could potentially be...
CVE-2019-16340
Belkin Linksys Velop 1.1.8.192419 devices allows remote attackers to discover the recovery key via a direct request for the /sysinfojson.cgi URI...
Microsoft Windows BitLocker 安全漏洞
Microsoft Windows BitLocker is a Microsoft Corporation USA BitLocker Ensure secure backup of recovery keys before activating protection. A security vulnerability exists in Microsoft Windows BitLocker that originates from an attacker's ability to bypass certain features by exploiting the...
Microsoft Windows BitLocker 安全漏洞
Microsoft Windows BitLocker is a Microsoft Corporation USA BitLocker Ensure secure backup of recovery keys before activating protection. A security vulnerability exists in Microsoft Windows BitLocker that originates from an attacker's ability to bypass certain features by exploiting the...
EUVD-2009-3183
Malware in sbrugna...
EUVD-2019-7117
Malware in sbrugna...
EUVD-2025-28064
Malicious code in bioql PyPI...
GHSA-VF84-MXRQ-CRQC OpenBao Root Namespace Operator May Elevate Token Privileges
Impact Accounts with access to the highly-privileged identity entity system in the root namespace may increase their scope directly to the root policy. While the identity system always allowed adding arbitrary policies, which in turn could contain capability grants on arbitrary paths, the root...
GO-2025-3788 Vault Community Edition rekey and recovery key operations can cause denial of service in github.com/hashicorp/vault
Vault Community Edition rekey and recovery key operations can cause denial of service in github.com/hashicorp/vault...