HCL Technologies Traveler To Do Security Vulnerability

HCL Technologies Traveler is a software from HCL Technologies, USA. It is used to provide automatic, bi-directional, wireless synchronization between HCL Domino servers and wireless handheld devices. A security vulnerability exists in HCL Technologies Traveler To Do, which originates from the...

Emerging Attacker Exploit: Microsoft Cross-Tenant Synchronization

Attackers continue to target Microsoft identities to gain access to connected Microsoft applications and federated SaaS applications. Additionally, attackers continue to progress their attacks in these environments, not by exploiting vulnerabilities, but by abusing native Microsoft functionality ...

Moderate: Red Hat Security Advisory: RHUI 4.5.0 release - Security, Bug Fixes, and Enhancements

An updated version of Red Hat Update Infrastructure RHUI is now available. RHUI 4.5 fixes several security and operational bugs and also adds several new features. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that enables you to manage repositories and...

LOLBAS in the Wild: 11 Living-Off-The-Land Binaries That Could Be Used for Malicious Purposes

Cybersecurity researchers have discovered a set of 11 living-off-the-land binaries-and-scripts LOLBAS that could be maliciously abused by threat actors to conduct post-exploitation activities. "LOLBAS is an attack method that uses binaries and scripts that are already part of the system for...

PT-2023-4369 · Microsoft · Windows Projected File System +1

Name of the Vulnerable Software and Affected Versions: Windows Projected File System affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource in the Windows Projected File System component. Exploitation of this issue may allow an...

PT-2023-4386 · Microsoft · Windows Ldap +1

Name of the Vulnerable Software and Affected Versions: Windows Lightweight Directory Access Protocol LDAP affected versions not specified Description: The issue is caused by synchronization errors when using a shared resource in the Windows Lightweight Directory Access Protocol LDAP implementatio...

The vulnerability of the skcipher_recvmsg function in the crypto/algif_skcipher.c file of Linux operating system kernels allows a hacker to cause a service failure.

The vulnerability of the skcipherrecvmsg function in the Linux operating system’s kernel code is related to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause service failures...

PT-2023-5631 · Mediatek · Mediatek Microcode

Name of the Vulnerable Software and Affected Versions: MediaTek microcode affected versions not specified Description: The issue is related to a possible use after free due to a race condition in thermal management, which could lead to local escalation of privilege. System execution privileges ar...

PT-2023-5630 · Mediatek · Mediatek Microcode

Name of the Vulnerable Software and Affected Versions: MediaTek microcode affected versions not specified Description: The issue is related to a possible use after free due to a race condition in the thermal component, which could lead to local escalation of privilege. System execution privileges...

The vulnerability of the Portmapper service in B&R Automation Runtime software for process control and management systems, related to initialization errors, allows a malicious actor to trigger a service failure.

The vulnerability of the Portmapper service in B&R Automation Runtime software for process control and management involves initialization errors. Exploiting this vulnerability can allow a malicious actor to trigger a service failure by sending SYN requests...

The vulnerability of Network Load Balancing (NLB) for Windows operating systems allows a attacker to execute arbitrary code.

The vulnerability of Network Load Balancing NLB for Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Bluetooth microprogramming software-based Unisoc chipsets, related to synchronization errors when using shared resources, allows a hacker to trigger a service failure.

The vulnerability of the Bluetooth microprogramming software-based Unisoc chipsets is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the DNS Server component of the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the DNS Server component of the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Active Directory Certificate Services (AD CS) service, which manages the distribution and usage of certificates, allows a perpetrator to execute arbitrary code.

The vulnerability of the Active Directory Certificate Services AD CS service, which manages the distribution and usage of certificates on Windows operating systems, is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the DNS Server component of the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the DNS Server component of the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Windows Clip Service in the Windows operating system allows a hacker to escalate their privileges.

The vulnerability of the Windows Clip Service in the Windows operating system is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Windows operating system’s kernel allows a hacker to gain unauthorized access to the device.

The vulnerability of the Windows operating system’s kernel is related to synchronization errors when using a shared resource „Race Condition“. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the device...

The vulnerability of Microsoft Excel editors arises from synchronization errors when using a shared resource, allowing an intruder to gain unauthorized access to the device.

The vulnerability of Microsoft Excel editors arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the device...