ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.0 packages and security update

Red Hat OpenShift Container Platform release 4.15.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a...

[SECURITY] Fedora 39 Update: diffoscope-257-1.fc39

diffoscope will try to get to the bottom of what makes files or directories different. It will recursively unpack archives of many kinds and transform various binary formats into more human readable form to compare them. It can compare two tarballs, ISO images, or PDF just as easily. The...

Amazon Systems Manager (SSM) Agent Installed (Windows)

Binary data amazonssmagentwininstalled.nbin...

Fortinet FortiSIEM Installed (Linux)

Binary data fortinetfortisiemnixinstalled.nbin...

Amazon CloudWatch Agent Installed (Windows)

Binary data amazoncloudwatchagentwininstalled.nbin...

Fedora: Security Advisory for libxls (FEDORA-2024-8b67e47e43)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Migo Targets Redis Servers for Cryptojacking Attacks

Summary: A new campaign has been uncovered that mines cryptocurrencies on Redis servers running Linux hosts by means of a malicious programme known as "Migo." Migo is distributed as a Golang ELF binary that can persist on Linux hosts and is obfuscated at compile time. The malware uses a variety o...

ConnectWise ScreenConnect HTTP Detection

Binary data screenconnecthttpdetect.nbin...

ConnectWise ScreenConnect Service Installed (Windows)

Binary data connectwisescreenconnectwininstalled.nbin...

ConnectWise ScreenConnect Service < 23.9.8 Authentication Bypass (Direct Check)

Binary data connectwisescreenconnect2398dc.nbin...

SolarWinds Access Rights Manager (ARM) Installed (Windows)

Binary data solarwindsarmwininstalled.nbin...

CVE-2023-7235

CVE-2023-7235 concerns the OpenVPN GUI installer prior to version 2.6.9, where the installation directory of OpenVPN binaries did not have proper access control when using a non-standard path. This weakness could allow an attacker to replace binaries and execute arbitrary code. The initial CVE en...

SUSE CVE-2024-26134

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR RFC 8949 serialization format. Starting in version 5.5.1 and prior to version 5.6.2, an attacker can crash a service using cbor2 to parse a CBOR binary by sending a long enough object. Version 5.6.2 contains a...

[SECURITY] Fedora 39 Update: syncthing-1.27.3-1.fc39

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

OpenVPN Security Vulnerabilities

OpenVPN is a software package from US-based OpenVPN for creating encrypted tunnels for Virtual Private Networks VPNs, which uses the OpenSSL library to encrypt data and control information, and allows the created VPN to be authenticated using a public key, an electronic certificate, or a...

PT-2024-15241 · Openvpn +1 · Openvpn +1

Name of the Vulnerable Software and Affected Versions: OpenVPN versions prior to 2.6.9 Description: The OpenVPN GUI installer did not set proper access control restrictions to the installation directory of OpenVPN binaries when using a non-standard installation path. This allows an attacker to...

New Migo Malware Targeting Redis Servers for Cryptocurrency Mining

A novel malware campaign has been observed targeting Redis servers for initial access with the ultimate goal of mining cryptocurrency on compromised Linux hosts. "This particular campaign involves the use of a number of novel system weakening techniques against the data store itself," Cado securi...

Denial Of Service (DoS)

cbor2 is vulnerable to Denial of Service DoS. The vulnerability is due to missing exit code checks when computing a cbor2 hash, allowing an attacker to send a sufficiently long object during CBOR binary parsing, resulting in Denial of Service Dos...

Adobe FrameMaker Publishing Server Detection

Binary data adobefmpsdetect.nbin...