11 matches found
EUVD-2021-30815
Malicious code in bioql PyPI...
EUVD-2024-0362
Malicious code in bioql PyPI...
Atlassian Jira 8.14.x < 8.20.5 Cross-Site Request Forgery
According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.13.16 or 8.14.x prior to 8.20.5. It is, therefore, affected by a vulnerability allowing unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring...
Atlassian Jira Server ViewInstrumentation.jspa Cross-site Request Forgery Vulnerability
Atlassian Jira Service is the server version of an IT service desk and request tracking system from Atlassian Australia. The Atlassian Jira Server is vulnerable to cross-site request forgery, which stems from an application/secure/admin/ViewInstrumentation.jspa endpoint that does not adequately...
CVE-2021-43953
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to toggle the Thread Contention and CPU monitoring settings via a Cross-Site Request Forgery CSRF vulnerability in the /secure/admin/ViewInstrumentation.jspa endpoint. The affected versions are befor...
Atlassian Jira Server 和 Data Center 跨站请求伪造漏洞
Atlassian Jira Service is the server version of an IT service desk and request tracking system from Atlassian Australia. The Atlassian Jira Server is vulnerable to cross-site request forgery, which stems from an application/secure/admin/ViewInstrumentation.jspa endpoint that does not adequately...
Defending against cryptojacking with Microsoft Defender for Endpoint and Intel TDT
Cryptocurrency mining—once considered no more than a nuisance, a relatively benign activity that was a drain on machine resources—has been on the rise in recent years. This increase in cryptocurrency mining activity is driven by the increasing value of cryptocurrencies like Bitcoin, the growth in...
CVE-2016-1000339
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak...
Design/Logic Flaw
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak...
CVE-2016-1000339
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak...
CVE-2016-1000339
In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if the data channel on the CPU can be monitored the lookup table accesses are sufficient to leak...