CVE-2016-9568

A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions...

CVE-2016-9568

Technical details for CVE-2016-9568 are not publicly available in the provided documents. Monitor for updates from other sources to assess impact, affected components, and remediation.

CVE-2016-9568

A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions...

JVN#28865183: Insecure DLL Loading issue in multiple Trend Micro products

Multiple products provided by Trend Micro Incorporated contain an insecure DLL loading issue CWE-427. When invoking the installers of other applications while the concerned products are installed to the PC, the DLL placed in the same directory as the the installers of the other applications may b...

Google Android SensorService suffers from a null pointer reference vulnerability

Google Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Consortium. A null pointer reference vulnerability exists in Google Android SensorService. The vulnerability stems from the Android system service SensorService has an interface...

Update on Apple Security Updates for MacOS Impacting Cb Response and Cb Protection Customers

Carbon Black has now made generally available releases to Cb Protection and Cb Response to support the latest OS versions and security update Security Update 2018-001 from Apple for the following Mac sensor/agent releases: Cb Protection: Cb Protection Announcing the Release of Cb Protection 7.2.3...

January Release Brings Improved Enterprise Management to Cb Defense

As a network of computers gets larger, the challenges and risks of keep systems consistently protected and in compliance increases. This means that, with a huge number of dispersed endpoints to keep watch over, security administrators at enterprise organizations often spend too much time deployin...

Flir Brickstream Sensors Incorrect Access Control Vulnerability (Aug 2018) - Active Check

Flir Brickstream Sensor is prone to an incorrect access control vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Tracking People Without GPS

Interesting research: The trick in accurately tracking a person with this method is finding out what kind of activity they're performing. Whether they're walking, driving a car, or riding in a train or airplane, it's pretty easy to figure out when you know what you're looking for. The sensors can...

Applying Lean to Information Risk Management

Lean Manufacturing brings significant benefits to industry, including cost reduction, quality improvement, reduced cycle time, and greater customer satisfaction See “The Machine that Changed the World”, Womak, J., Jones, D., and Roos, D., Free, Press, 1990 for the groundbreaking analysis of...

CVE-2015-2878

Multiple cross-site request forgery CSRF vulnerabilities in Hexis HawkEye G 3.0.1.4912 allow remote attackers to hijack the authentication of administrators for requests that 1 add arbitrary accounts via the name parameter to interface/rest/accounts/json; turn off the 2 Url matching, 3 DNS Inject...

CVE-2015-2878

Multiple cross-site request forgery CSRF vulnerabilities in Hexis HawkEye G 3.0.1.4912 allow remote attackers to hijack the authentication of administrators for requests that 1 add arbitrary accounts via the name parameter to interface/rest/accounts/json; turn off the 2 Url matching, 3 DNS Inject...

CVE-2017-15008

PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all sensor titles, related to incorrect error handling for a %00 in the SRC attribute of an IMG element...

FLIR Systems FLIR Thermal Camera F/FC/PT/D Stream Disclosure

Summary FLIR's PT-Series of high-performance, multi-sensor pan/tilt cameras bring thermal and visible-light imaging together in a system that gives you video and control over both IP and analog networks. The PT-Series' precision pan/tilt mechanism gives you accurate pointing control while providi...

Apple's FaceID

This is a good interview with Apple's SVP of Software Engineering about FaceID. Honestly, I don't know what to think. I am confident that Apple is not collecting a photo database, but not optimistic that it can't be hacked with fake faces. I dislike the fact that the police can point the phone at...

Google Android HTC Component Information Disclosure Vulnerability

Android is a Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA, and the HTC sensor hub driver is a microcontroller that helps acquire, integrate, and process data from different sensors. An information disclosure vulnerability exists in the HTC sensor...

CVE-2017-0709

A information disclosure vulnerability in the HTC sensor hub driver. Product: Android. Versions: Android kernel. Android ID: A-35468048...

CVE-2017-0709

A information disclosure vulnerability in the HTC sensor hub driver. Product: Android. Versions: Android kernel. Android ID: A-35468048...

CVE-2017-0709

CVE-2017-0709 affects the HTC sensor hub driver in the Android kernel. It is an information-disclosure vulnerability with local access, requiring user interaction (CVSS v3: 3.3 Low). The HTC sensor hub vulnerability is addressed in the 2017-07 Android security bulletin; apply the July 2017 patch ...

The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of Goodix’s sensor screen driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requir...