Lucene search
+L

153 matches found

Schneier on Security
Schneier on Security
added 2022/12/15 2:30 a.m.15 views

Reimagining Democracy

Last week, I hosted a two-day workshop on reimagining democracy. The idea was to bring together people from a variety of disciplines who are all thinking about different aspects of democracy, less from a "what we need to do today" perspective and more from a blue-sky future perspective. My remit ...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2022/12/13 12:0 a.m.5 views

WithSecure products 安全漏洞

WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure that stems from a denial-of-service DoS vulnerability found in the fsicapd component, which could cause the service to crash while parsing ICAP requests...

7.5CVSS7.2AI score0.00386EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2022/11/18 2:0 p.m.12 views

Akamai Is Delighted to Partner with Teneo and Bytes Software Services

Akamai?s partnerships with Teneo and Bytes Software Solutions help us to adapt, grow, and innovate in an ever-changing landscape...

1.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2022/11/18 2:0 p.m.6 views

Akamai Is Delighted to Partner with Teneo and Bytes Software Services

Akamai’s partnerships with Teneo and Bytes Software Solutions help us to adapt, grow, and innovate in an ever-changing landscape...

7AI score
Exploits0
OSV
OSV
added 2022/11/03 5:0 p.m.6 views

CLSA-2022-1667494847 java-1.8.0-openjdk: Fix of 4 CVEs

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u352-b08. That fixes following CVEs: - CVE-2022-21619: Improper handling of long NTLM client hostnames - CVE-2022-21624: Insufficient randomization of JNDI DNS port numbers - CVE-2022-21626: Excessive memory allocation in X.509 certificate...

5.3CVSS7.3AI score0.02376EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.9 views

The vulnerabilities of EtherNet/IP adaptation programs (EADK), EtherNet/IP scanners (EDKS), and EtherNet/IP DLL adapters (EIPA) / EtherNet/IP DLL scanners (EIPS) stem from writing beyond the buffer boundaries in memory, allowing attackers to trigger service failures.

The vulnerabilities of EtherNet/IP adaptation programs EADK, EtherNet/IP scanners EDKS, and EtherNet/IP DLL adapters EIPA are related to writing beyond the buffer boundaries in memory. Exploiting these vulnerabilities can allow a malicious actor to cause service failure by sending specially craft...

10CVSS7.4AI score0.01238EPSS
Exploits0References5Affected Software5
HackRead
HackRead
added 2022/08/12 3:33 p.m.14 views

Ways That VoIP Technology Is Impacting Marketplaces and How to Adapt

By Owais Sultan VoIP stands for Voice Over Internet Protocol. It allows users to communicate wirelessly and with high-quality sound. This has… This is a post from HackRead.com Read the original post: Ways That VoIP Technology Is Impacting Marketplaces and How to Adapt...

4.2AI score
Exploits0
OSV
OSV
added 2022/06/18 4:1 p.m.7 views

OPENSUSE-SU-2022:10014-1 Security update for tensorflow2

This update for tensorflow fixes the following issues: Update to TF2 2.6.0 which fixes multiple CVEs boo1189423. - Introduction of bazel6.3 and basel-skylib1.0.3 as build dependencies. The latter has been adapted to all a version in its package name if %setversuffix is set to 1. This allows...

9.3CVSS6AI score0.00451EPSS
Exploits5References72
Schneier on Security
Schneier on Security
added 2022/05/06 9:15 p.m.9 views

Friday Squid Blogging: Squid Filmed Changing Color for Camouflage Purposes

Video of oval squid Sepioteuthis lessoniana changing color in reaction to their background. The research paper claims this is the first time this has been documented. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog...

2.8AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2022/05/05 10:2 p.m.11 views

How to Protect Your Digital Privacy if Roe v. Wade Falls

Reproductive rights are still largely guaranteed in the United States. Here are some key privacy concepts to adopt in the event that they're not...

1.9AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/27 12:0 a.m.222 views

Miele Benchmark Programming Tool 1.1.49 / 1.2.71 Privilege Escalation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Privilege Escalation product: Miele Benchmark Programming Tool vulnerable version: at least 1.1.49 and 1.2.71 fixed version: 1.2.72 CVE number: CVE-2022-22521 impact:...

1AI score0.00521EPSS
Exploits2
Metasploit
Metasploit
added 2022/03/16 5:42 p.m.77 views

Python Exec, Command Shell, Bind TCP (via python)

Execute a Python payload as an OS command from a Posix-compatible shell. Creates an interactive shell via Python, encodes with base64 by design. Compatible with Python 2.4-2.7 and 3.4+. Module Options msf use payload/cmd/unix/python/shellbindtcp msf payloadshellbindtcp show actions ...actions...

7.2AI score
Exploits0
Fedora
Fedora
added 2022/02/24 11:27 p.m.12 views

[SECURITY] Fedora 34 Update: xpra-4.3.2-1.fc34

Xpra is "screen for X": it allows you to run X programs, usually on a remote host, direct their display to your local machine, and then to disconnect from these programs and reconnect from the same or another machine, without losing any state. It gives you remote access to individual applications...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/12/14 5:9 p.m.17 views

5 security lessons from 18 months of working from home

A little more than 20 months ago, many people around the world were asked or instructed to work from home to help slow the spread of COVID-19. It caused a seismic change to the way we all do business. Now, our latest research reveals how IT decision makers security concerns have been changed by...

7.2AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/04/21 12:51 p.m.50 views

Bad Bot Traffic Breaks Records in 2020

Bad bots have long been a major illness plaguing the internet. As internet traffic reached new heights throughout the global pandemic, unfortunately so did bot traffic. In 2020, 40.8 percent of internet traffic wasn’t human, and 25.6 percent originated from bad bots. What have these bad bots been...

7.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/04/14 12:0 a.m.6 views

The vulnerability of the JunOS operating system’s SRX series routers’ implementation of the Internet Content Adaptation Protocol (ICAP) allows attackers to enhance their privileges, execute arbitrary code, or cause service failures.

The vulnerability of the Internet Content Adaptation Protocol ICAP implementation in the JunOS operating system’s SRX series routers stems from the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to enhance their privileges,...

9.8CVSS8AI score0.02232EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/04/14 12:0 a.m.6 views

The vulnerability of the JunOS operating system’s SRX series routers’ implementation of the Internet Content Adaptation Protocol (ICAP) allows attackers to enhance their privileges, execute arbitrary code, or cause service failures.

The vulnerability of the Internet Content Adaptation Protocol ICAP implementation in JunOS router operating systems is related to a re-release mechanism. Exploiting this vulnerability allows an attacker to enhance their privileges, execute arbitrary code, or cause service failures...

9.8CVSS8AI score0.02647EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/02/10 7:15 p.m.4 views

CVE-2021-27167

An issue was discovered on FiberHome HG6245D devices through RP2613. There is a password of four hexadecimal characters for the admin account. These characters are generated in init3bbpassword in libciadaptationlayer.so...

9.8CVSS7.3AI score0.1459EPSS
Exploits1References1
CNVD
CNVD
added 2020/12/18 12:0 a.m.3 views

Arbitrary File Download Vulnerability in EAP Enterprise Adaptation Management Platform

Ltd. launched a digital intelligent operation management platform, through data governance, modeling analysis and other means to help operators achieve operation monitoring, measurement and analysis, prediction and early warning and other decision-making intelligent assistance, a total of more th...

6.8AI score
Exploits0
NVD
NVD
added 2020/12/14 9:15 p.m.23 views

CVE-2019-19283

A vulnerability has been identified in XHQ All Versions 6.1. The application's web server could expose non-sensitive information about the server's architecture. This could allow an attacker to adapt further attacks to the version in place...

5.3CVSS5.9AI score0.00851EPSS
Exploits0References1
Rows per page
Query Builder