Lucene search
+L

179 matches found

CERT
CERT
added 2018/03/19 12:0 a.m.1301 views

Bouncy Castle BKS-V1 keystore files vulnerable to trivial hash collisions

Overview Bouncy Castle BKS version 1 keystore files use an HMAC that is only 16 bits long, which can allow an attacker to compromise the integrity of a BKS-V1 keystore. Description Bouncy Castle is a cryptographic library for C and Java applications, including Android applications. BKS is a...

4.4CVSS5AI score0.00262EPSS
Exploits0References3
CERT
CERT
added 2018/02/01 12:0 a.m.524 views

Pulse Secure Linux client GUI fails to validate SSL certificates

Overview The Pulse Secure Linux client GUI fails to validate SSL certificates, which can allow an attacker to modify connection settings. Description Pulse Secure is an SSL VPN solution. The Linux Pulse Secure client GUI is implemented using WebKit, and the actions taken using the GUI are...

6.5CVSS6.2AI score0.00616EPSS
Exploits0References1
CISA
CISA
added 2017/11/29 12:0 a.m.14 views

Apple Releases Security Update for macOS High Sierra

Apple has released a supplemental security update to address a vulnerability in macOS High Sierra 10.13. An attacker could exploit this vulnerability to take control of an affected system. US-CERT encourages users and administrators to review CERT/CC Vulnerability Note VU113765 and the Apple...

6.6AI score
Exploits0References2
MSRC
MSRC
added 2017/11/21 8:0 a.m.14 views

Clarifying the behavior of mandatory ASLR

Last week, the CERT/CC published an advisory describing some unexpected behavior they observed when enabling system-wide mandatory Address Space Layout Randomization ASLR using Windows Defender Exploit Guard WDEG and EMET on Windows 8 and above. In this blog post, we will explain the configuratio...

7AI score
Exploits0
MSRC
MSRC
added 2017/11/21 8:0 a.m.26 views

Clarifying the behavior of mandatory ASLR

Last week, the CERT/CC published an advisory describing some unexpected behavior they observed when enabling system-wide mandatory Address Space Layout Randomization ASLR using Windows Defender Exploit Guard WDEG and EMET on Windows 8 and above. In this blog post, we will explain the configuratio...

2.3AI score
Exploits0
CISA
CISA
added 2017/11/20 12:0 a.m.14 views

Windows ASLR Vulnerability

The CERT Coordination Center CERT/CC has released information on a vulnerability in Windows Address Space Layout Randomization ASLR that affects Windows 8, Windows 8.1, and Windows 10. A remote attacker could exploit this vulnerability to take control of an affected system. US-CERT encourages use...

6.7AI score
Exploits0References1
ThreatPost
ThreatPost
added 2017/10/11 2:23 p.m.14 views

Vendor BPC Silent on Patching SQL Injection in SmartVista Ecommerce Software

A popular ecommerce platform sold in 60 countries suffers from a SQL injection vulnerability privately disclosed in April that has yet to be patched by the vendor. BPC Banking Technologies of Switzerland has not acknowledged the vulnerability in its SmartVista suite of ecommerce and financial...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2017/07/18 12:0 a.m.135 views

PEGA Platform <= 7.2 ML0 - Missing Access Control / Cross-Site Scripting

Summary ======= 1. Missing access control CVE-2017-11356 2. Multiple cross-site scripting CVE-2017-11355 Vendor ====== "Pegasystems Inc. is the leader in software for customer engagement and operational excellence. Pega’s adaptive, cloud-architected software – built on its unified Pega® Platform ...

6.5CVSS6.3AI score0.03503EPSS
Exploits4
CERT
CERT
added 2017/06/15 12:0 a.m.523 views

Samsung Magician fails to update itself securely

Overview Samsung Magician fails to securely check for and retrieve updates, which an allow an authenticated attacker to execute arbitrary code with administrator privileges. Description Samsung Magician is a management utility for Samsung SSDs. Prior to version 5.0, Samsung Magician checks for an...

8.8CVSS8.9AI score0.00344EPSS
Exploits0References2
0day.today
0day.today
added 2017/06/09 12:0 a.m.67 views

WiMAX CPE Authentication Bypass Vulnerability

Various WiMAX CPEs are vulnerable to an authentication bypass. An attacker can set arbitrary configuration values without prior authentication. The vulnerability is located in commit2.cgi implemented in libmtkhttpdplugin.so. title: Various WiMAX CPEs Authentication Bypass product: see "Vulnerable...

7.2AI score
Exploits0
CISA
CISA
added 2017/04/25 12:0 a.m.11 views

IBM Releases Security Update

IBM has released a security update to address a vulnerability in IBM Domino server IMAP EXAMINE. An attacker could exploit this vulnerability to take control of an affected system. Available updates include: Domino 9.0.1 Feature Pack 8 Interim Fix 2 Domino 8.5.3 Fix Pack 6 Interim Fix 17 Users an...

6.5AI score
Exploits0References2
myhack58
myhack58
added 2017/04/07 12:0 a.m.706 views

Java AMF3 exposure remote code execution vulnerability-vulnerability warning-the black bar safety net

! Recently, a German security team @codewhitesec found a Java AMF3 plurality of functions to achieve vulnerability, the American CERT/CC also issued a safety warning. An attacker can remotely by tricking or controlling the service connection, in AMF3 reverse sequence operation when the execution ...

5.5CVSS1.7AI score0.21274EPSS
Exploits14
ThreatPost
ThreatPost
added 2016/12/13 4:25 p.m.23 views

Beta Firmware Updates Available for Vulnerable Netgear Routers

Netgear has begun pushing out beta versions of firmware updates that will address a critical vulnerability that was disclosed late last week. The networking vendor also confirmed that many more routers in its Nighthawk line are vulnerable than originally reported. The flaw allows attackers to car...

0.2AI score
Exploits8References5
CERT
CERT
added 2016/02/29 12:0 a.m.40 views

IKE/IKEv2 protocol implementations may allow network amplification attacks

Overview Implementations of the IKEv2 protocol are vulnerable to network amplification attacks. Description CWE-406: Insufficient Control of Network Message Volume Network Amplification IKE/IKEv2 and other UDP-based protocols can be used to amplify denial-of-service attacks. In some scenarios, an...

7.8CVSS7.4AI score0.03151EPSS
Exploits0References6
Talos
Talos
added 2016/02/08 12:0 a.m.36 views

Trane Comfortlink II DSS Service Request Handling Remote Code Execution Vulnerability

Talos Vulnerability Report TALOS-2016-0026 Trane Comfortlink II DSS Service Request Handling Remote Code Execution Vulnerability February 8, 2016 CVE Number CVE-2015-2868 Description An exploitable remote code execution vulnerability exists in the Trane ComfortLink II DSS service. An attacker who...

10CVSS10.1AI score0.06841EPSS
Exploits1
ThreatPost
ThreatPost
added 2016/02/04 1:5 p.m.10 views

Netgear Management System Vulnerable to RCE, Path Traversal Attacks

Netgear’s ProSafe Network Management System suffers from two vulnerabilities, an arbitrary file upload and a path traversal, which could let a remote attacker execute code and download files. The problems affect the NMS300 product, a web-based system the company manufactures to help users monitor...

1.4AI score
Exploits0References3
CERT
CERT
added 2015/12/10 12:0 a.m.42 views

ReadyNet WRT300N-DD Wireless Router contains multiple vulnerabilities

Overview ReadyNet WRT300N-DD Wireless Router, firmware version 1.0.26, uses default credentials, is vulnerable to cross-site request forgery, and uses insufficiently random values for DNS queries. Description CWE-255: Credentials Management - CVE-2015-7280The ReadyNet WRT300N-DD Wireless Router...

10CVSS8.3AI score0.02431EPSS
Exploits0References1
CERT
CERT
added 2015/12/10 12:0 a.m.46 views

Netgear G54/N150 Wireless Router WNR1000v3 uses insufficiently random values for DNS queries

Overview Netgear G54/N150 Wireless Router WNR1000v3, firmware version 1.0.2.68 and possibly earlier, uses insufficiently random values for DNS queries and is vulnerable to DNS spoofing attacks. Description CWE-330: Use of Insufficiently Random Values - CVE-2015-8263The Netgear G54/N150 Wireless...

8.6CVSS8.8AI score0.0183EPSS
Exploits0References1
Hacker One
Hacker One
added 2015/12/05 7:14 a.m.13 views

CERT/CC: manipulate the Practical HTTP Host header

Report claims redirection on http://www.kb.cert.org using Host header, could not reproduce. Host header was used to generate content. Host header removed from all content generating code...

Exploits0
The Hacker News
The Hacker News
added 2015/09/03 1:38 a.m.37 views

Popular Belkin Wi-Fi Routers vulnerable to Hackers

US-CERT has outlined about Wireless routers developed by Belkin supposedly containing several vulnerabilities. CERT in their Vulnerability Note VU201168 Vulnerability ID said, that Belkin’s N600 DB Wireless Dual-Band N+ Router, model F9K1102 v2 with firmware version 2.10.17 and very likely earlie...

10CVSS9.4AI score0.02817EPSS
Exploits0
Rows per page
Query Builder