9293 matches found
Fedora Update for suricata FEDORA-2019-52b360546c
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The Summit of Cybersecurity Sits Among the Clouds
Trend Micro Apex One as a Service You have heard it before, but it needs to be said again—threats are constantly evolving and getting sneakier, more malicious, and harder to find than ever before. It’s a hard job to stay one step ahead of the latest threats and scams organizations come across, bu...
Plantronics Hub SpokesUpdateService Privilege Escalation
The Plantronics Hub client application for Windows makes use of an automatic update service SpokesUpdateService.exe which automatically executes a file specified in the MajorUpgrade.config configuration file as SYSTEM. The configuration file is writable by all users by default. This module has be...
AVCLASS++ - Yet Another Massive Malware Labeling Tool
AVCLASS++ is an appealing complement to AVCLASS 1, a state-of-the-art malware labeling tool. Overview AVCLASS++ is a labeling tool for creating a malware dataset. Addressing malware threats requires constant efforts to create and maintain a dataset. Especially, labeling malware samples is a vital...
CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
DEBIAN-CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
UBUNTU-CVE-2019-16780
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
CVE-2019-16780 Stored cross-site scripting (XSS) in WordPress block editor
WordPress users with lower privileges like contributors can inject JavaScript code in the block editor using a specific payload, which is executed within the dashboard. This can lead to XSS if an admin opens the post in the editor. Execution of this attack does require an authenticated user. This...
DEBIAN-CVE-2012-5639
LibreOffice and OpenOffice automatically open embedded content...
CVE-2012-5639
LibreOffice and OpenOffice automatically open embedded content...
PT-2019-4245 · Apache +2 · Openoffice +2
Name of the Vulnerable Software and Affected Versions: LibreOffice affected versions not specified OpenOffice affected versions not specified Description: The issue is related to LibreOffice and OpenOffice automatically opening embedded content. This can be exploited by a remote attacker to impac...
The vulnerability of the RouterOS operating system’s automatic update function in MikroTik routers allows a intruder to gain unauthorized access to protected information.
The vulnerability of the RouterOS operating system’s automatic update function for MikroTik routers involves loading code without checking its integrity. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected information by resetting t...
December 2019 security updates are available
We have released the December security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found in the Security Update Guide. As a reminder,...
December 2019 security updates are available
We have released the December security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found in the Security Update Guide. As a reminder,...
December 2019 security updates are available
We have released the December security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found in the Security Update Guide. As a reminder,...
Description of the security update for Office 2010: December 10, 2019
Description of the security update for Office 2010: December 10, 2019 Summary This security update resolves an information disclosure vulnerability that exists if Microsoft Excel incorrectly discloses the contents of its memory. To learn more about the vulnerability, see Microsoft Common...
The vulnerability of the automatic update function of the corporate VPN application GlobalProtect Agent for Windows allows a intruder to increase their privileges.
The vulnerability of the automatic update function of the corporate VPN application, GlobalProtect Agent for Windows, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to enhance their privileges by loading the modified MSI installer onto the disk...
[SECURITY] Fedora 31 Update: clamav-0.101.5-1.fc31
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...
[SECURITY] Fedora 30 Update: clamav-0.101.5-1.fc30
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...