1310 matches found
NVIDIA Linux GPU Display Driver contains missing permissions check and improper validation vulnerabilities - us
Lenovo Security Advisory: LEN-10962 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Industry-Wide CVE Identifier: CVE-2016-7382, CVE-2016-7389 Summary Description: The NVIDIA GPU Display Driver for Linux contains two privilege escalation vulnerabilities. CVE-2016-7382...
NVIDIA Linux GPU Display Driver contains missing permissions check and improper validation vulnerabilities - Lenovo Support US
No description provided...
The Successful CISO: Tips for Paving the Way to Job Security
Seasoned CISOs know that failure to plan past a two-year window is dangerous—to both their company and their job security. But it’s all too common for many security strategies to look only two years out. Imperva CISO Shahar Ben-Hador has been with Imperva for eight-and-a-half years—the last...
Intel® Wireless Bluetooth® Driver Unquoted Service Path - Lenovo Support US
No description provided...
Denial of Service Vulnerabilities in NVidia® Drivers that affect Quadro, NVS and GeForce Windows-based Systems - Lenovo Support US
No description provided...
Local Privilege Escalation or Denial of Service via the Intel® Graphics Driver
Lenovo Security Advisory: LEN-7484 Potential Impact: Local privilege escalation or denial of service Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2016-5647 Summary Description: Multiple potential vulnerabilities exist in the Intel® Graphics Driver for Microsoft Windows. These...
Howard Schmidt's Legacy of Service Remembered
Howard Schmidt, one of the security industry’s groundbreaking public policy mavens who served as the top White House cybersecurity advisor under two presidents, died on Thursday. He was 67. Schmidt’s legacy stretches from the private sector, where he was CISO at Microsoft and eBay, to a lengthy...
crackle - Crack Bluetooth Smart (BLE) Encryption
crackle cracks BLE Encryption AKA Bluetooth Smart. crackle exploits a flaw in the BLE pairing process that allows an attacker to guess or very quickly brute force the TK Temporary Key. With the TK and other data collected from the pairing process, the STK Short Term Key and later the LTK Long Ter...
Inherent Risks of Using the Intelligent Platform Management Interface (IPMI) on the Lenovo System x Integrated Management Module (IMM), Integrated Management Module II (IMM2) and ThinkServer TSM - us
Lenovo Security Advisory: LEN-10617 Potential Impact: Access to systems through IPMI if default settings are not changed Severity: High Scope of Impact: Industry-Wide CVE Identifiers: CVE-2013-4037, CVE-2013-4031 Summary Description: Various risks with the industry-standard Intelligent Platform...
Privilege escalation vulnerabilities in IBM System Networking Switch Center and Lenovo Switch Center
Lenovo Security Advisory:LEN-2015-074, LEN-2746 Potential Impact: Escalation of Privileges Severity: High Summary: Multiple vulnerabilities have been identified in the following products: - IBM System Networking Switch Center - Lenovo Switch Center Description: Lenovo Switch Center, previously...
Certain BIOS versions may include an AMI Test Key that could compromise Secure Boot protections - Lenovo Support NL
No description provided...
Buggy Domain Validation Forces GoDaddy to Revoke Certs
GoDaddy has revoked, and begun the process of re-issuing, new SSL certificates for more than 6,000 customers after a bug was discovered in the registrar’s domain validation process. The bug was introduced July 29 and impacted fewer than two percent of the certificates GoDaddy issued from that dat...
AMI BIOS SMM Code Execution Vulnerability
Lenovo Security Advisory: LEN-4710 Potential Impact: Execution of code in SMM by an attacker with administrative access Severity: Medium Scope of impact: Industry-wide Summary Description: System Management Mode SMM is the most privileged execution mode of the x86 processor. Software System...
Lenovo System Interface Foundation Privilege Escalation - us
Lenovo Security Advisory: LEN-10150 Potential Impact: Local privilege escalation Severity: High Scope of Impact: Lenovo specific CVE Identifier: CVE-2016-8223 Summary Description: During an internal security review, Lenovo identified a local privilege escalation vulnerability in Lenovo System...
Microsoft Device Guard protection bypass - us
Lenovo Security Advisory: LEN-8327 Potential Impact: Denial of service Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2016-8222 Summary Description: A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacke...
NVIDIA GPU Kernel Driver Escape
Lenovo Security Advisory: LEN-5551 Potential Impact: Privilege escalation, potential information disclosure, crashes or denial of service Severity: High Scope of Impact: Industry-Wide Summary Description: On March 21, 2016, NVIDIA announced three high-severity driver vulnerabilities. These driver...
Data on Toshiba Solid State Drives may be recoverable after running the BIOS Secure Erase Function or the ThinkPad Drive Erase Utility - Lenovo Support US
No description provided...
Sofacy APT organization to develop new Flash exploit framework-vulnerability warning-the black bar safety net
Sofacy cyber espionage Group, also known as Fancy Bear, and APT28, a Sednit, a Pawn Storm, and Strontium in. The organization has developed a new hack tool, and in the summer of this year the attacks have been put into use. Palo Alto Networks, the company said, the gang will be targeted in the...
Cobalt Strike team Services is proof of the RCE vulnerability as soon as possible to upgrade to the latest version-bug warning-the black bar safety net
! Security customer reviews Some time ago Metasploit just broke deserialization vulnerability may lead to remote unauthorized execution of code today and broke the Cobalt Strike team Services RCE vulnerability, it appears that the security personnel in the use of these excellent open source tools...
Lenovo XClarity Administrator (LXCA) Local Privilege Escalation - lu
Lenovo Security Advisory: LEN-7145 Potential Impact: Local privilege escalation Severity:High Scope of Impact: Lenovo Summary Description: During internal testing, Lenovo identified a local privilege escalation vulnerability in certain versions of LXCA that could allow a local user with...