EUVD-2022-30476

Malicious code in bioql PyPI...

RHEL 8 : bluez (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kernel: Authvalue leak in Bluetooth Mesh Provisioning CVE-2020-26559 - bluez: BlueZ allows physically...

Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike

Cybersecurity researchers have discovered an ongoing attack campaign that's leveraging phishing emails to deliver a malware called SSLoad. The campaign, codenamed FROZENSHADOW by Securonix, also involves the deployment of Cobalt Strike and the ConnectWise ScreenConnect remote desktop software...

CVE-2022-25837

Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the other BR/EDR Legacy PIN code pairing if the MITM...

Security update for samba (important)

openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2022:0283-1 Rating: important References: 1139519 1183572 1183574 1188571 1191227 1191532 1192684 1193690 1194859 1195048 SLE-23329 Cross-References: CVE-2020-27840 CVE-2021-20277 CVE-2021-20316 CVE-2021-36222...

Siemens SiPass Integrated Credential Acquisition Vulnerability

SiPass server is a component of the SiPass centralized access control system that receives connections from clients for communication. A credential acquisition vulnerability exists in Siemens SiPass integrated, where an attacker with local access to the SiPass integrated server or SiPass integrat...