Security feature bypass

A vulnerability was reported in Elliptic Labs Virtual Lock Sensor for ThinkPad T14 Gen 3 that could allow an attacker with local access to execute code with elevated privileges...

Lenovo ThinkPad T14 Gen 3 Security Vulnerability

Lenovo ThinkPad is a portable computer from Lenovo, a Chinese company. A security vulnerability exists in the Lenovo ThinkPad T14 Gen 3, which stems from Elliptic Labs Virtual Lock Sensor allows an attacker with local access rights to execute code with elevated privileges...

CVE-2023-3112

A vulnerability was reported in Elliptic Labs Virtual Lock Sensor for ThinkPad T14 Gen 3 that could allow an attacker with local access to execute code with elevated privileges...

CVE-2023-3112

A vulnerability was reported in Elliptic Labs Virtual Lock Sensor for ThinkPad T14 Gen 3 that could allow an attacker with local access to execute code with elevated privileges...

CVE-2023-3112

CVE-2023-3112 concerns the Elliptic Labs Virtual Lock Sensor used by ThinkPad T14 Gen 3. Documents confirm a local attacker could execute code with elevated privileges via this sensor. The vulnerability affects the sensor component embedded in ThinkPad laptops, with no public details on affected ...

Important: Red Hat Security Advisory: ACS 4.2 enhancement and security update

Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes new features and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

sensorinstruments.de Cross Site Scripting vulnerability OBB-3760196

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-4291

Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a remote code execution RCE vulnerability via manipulated parameters of the web interface without authentication. This could lead to a full compromise of the FDS101 device...

Frauscher Sensortechnik FDS101 Path Traversal Vulnerability

Frauscher Sensortechnik FDS101 is a diagnostic system device from Frauscher. A path traversal vulnerability exists in Frauscher Sensortechnik FDS101 v1.4.24, which stems from the presence of a path traversal vulnerability...

PT-2023-28639 · Frauscher Sensortechnik Gmbh · Fds101

Name of the Vulnerable Software and Affected Versions: Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi versions 1.4.24 and all previous versions Description: The issue is related to a SQL injection vulnerability that can be exploited via manipulated parameters of the web interface without...

Elliptic Labs Virtual Lock Sensor Vulnerability - Lenovo Support US

No description provided...

Wiz enhances real-time threat detection and response capabilities to stop threats from becoming incidents

The Wiz Runtime Sensor for Kubernetes graduates to general availability with proven ability to detect cloud attacks, greater customization for detections, and new cloud-native response capabilities...

I know what you mined last summer: summarizing Summer '23 cryptomining activity

During the summer of 2023, using the Wiz Sensor, Wiz Research detected several different cryptomining campaigns targeting cloud workloads. Learn about these campaigns and their associated IoCs, and how to detect and prevent similar threats...

ELSYS ERS Security Vulnerability

ELSYS ERS is a smart, professional LoRaWAN sensor from ELSYS. It is used for indoor climate measurements. A security vulnerability exists in ELSYS ERS version 1.5 Sound v2.3.8, which stems from a buffer overflow vulnerability in the NFC data parser...

new package: gpsd-minimal

An update is available for gpsd-minimal. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gpsd package provides a service daemon that mediates access to a GPS...

SICK LMS5xx 安全漏洞

The SICK LMS5xx is a series of sensors from SICK, Germany. A security vulnerability exists in the SICK LMS5xx that stems from the use of a weak hash generation method that results in the creation of an insecure hash that could lead to a conflict attack and retrieve a password...

Tenable Sensor Proxy < 1.0.8 Multiple Vulnerabilities (TNS-2023-28)

According to its self-reported version, the Tenable Sensor Proxy running on the remote host is version 1.0.7. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-28 advisory. - Sensor Proxy leverages third-party software to help provide underlying functionality. O...

[R1] Sensor Proxy Version 1.0.8 Fixes Multiple Vulnerabilities

R1 Sensor Proxy Version 1.0.8 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 08/15/2023 - 15:13 Sensor Proxy leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and updated versions have been ma...

CVE-2023-21232

In multiple locations, there is a possible way to retrieve sensor data without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-21232

In multiple locations, there is a possible way to retrieve sensor data without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...