Lucene search
K

160 matches found

Malwarebytes
Malwarebytes
added 2024/09/20 4:26 p.m.19 views

“Simply staggering” surveillance conducted by social media and streaming services, FTC finds

The US Federal Trade Commission FTC released a report that examines the data collection and use practices of major social media and video streaming services, finding that—and this will not come as a surprise to our regular readers—the companies engaged in vast surveillance of consumers in order t...

6.7AI score
Exploits0
NVD
NVD
added 2024/08/20 3:15 p.m.21 views

CVE-2024-43406

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2...

8.8CVSS0.00894EPSS
Exploits1References2
OSV
OSV
added 2024/08/20 3:15 p.m.34 views

PYSEC-2024-72

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2...

8.8CVSS8.9AI score0.00894EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/20 3:0 p.m.41 views

CVE-2024-43406 LF Edge eKuiper has a SQL Injection in sqlKvStore

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2...

8.8CVSS0.00894EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/08/20 3:0 p.m.9 views

CVE-2024-43406 LF Edge eKuiper has a SQL Injection in sqlKvStore

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2...

8.8CVSS8.3AI score0.00894EPSS
Exploits1References2
OSV
OSV
added 2024/08/20 3:0 p.m.29 views

CVE-2024-43406 LF Edge eKuiper has a SQL Injection in sqlKvStore

LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of malicious SQL query via Get method in sqlKvStore. This vulnerability is fixed in 1.14.2...

8.8CVSS7.5AI score0.00894EPSS
Exploits1References4
Wired Threat Level
Wired Threat Level
added 2024/08/15 1:0 p.m.12 views

Nearly All Google Pixel Phones Exposed by Unpatched Flaw in Hidden Android App

A fix is coming, but data analytics giant Palantir says it’s ditching Android devices altogether because Google’s response to the vulnerability has been troubling...

7.3AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.6 views

The vulnerability of the SQL engine of the Dell Data Analytics Engine (DDAE) in the Dell Data Lakehouse data storage platform allows a hacker to disclose protected information.

The vulnerability of the SQL engine of the Dell Data Analytics Engine DDAE in the Dell Data Lakehouse data storage platform is related to the lack of data encryption measures. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

6.8CVSS5.6AI score0.00096EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2024/07/23 12:0 a.m.7 views

Command Execution Vulnerability in Multiple Products of FanSoft Software Co.

Fansoft Software Ltd. is a professional big data BI and analytics platform provider in China. A command execution vulnerability exists in multiple products of SailSoft Software Limited, which can be exploited by attackers to gain control of a server...

7.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2024/05/17 11:33 p.m.22 views

The Importance of Bot Management in Your Marketing Strategy

Marketing teams need a comprehensive bot management solution to address the challenges posed by bot traffic and protect marketing analytics. Bot management is designed to protect marketing efforts from bot-generated invalid traffic by accurately and efficiently classifying traffic and stopping...

7AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/05/02 12:15 p.m.26 views

Qualys Launches MSSP Portal to Empower Managed Security Service Providers

In the words of Sun Tzu, In the midst of chaos, there is also opportunity. This aptly captures the essence of todays cybersecurity landscape. Managed Security Service Providers MSSPs stand at the forefront, turning chaos into opportunity by securing digital assets across the entire infrastructure...

7.3AI score
Exploits0
CNVD
CNVD
added 2024/04/02 12:0 a.m.22 views

Arbitrary File Download Vulnerability in Yonghong Z-Suite of Beijing Yonghong Business Intelligence Technology Co.

Yonghong Z-Suite is a one-stop big data analytics platform. Yonghong Z-Suite has an arbitrary file download vulnerability that can be exploited by attackers to obtain sensitive information...

7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/01/12 2:0 p.m.15 views

2023 Ransomware Stats: A Look Back To Plan Ahead

Last year was not a year for the faint of heart. Organizations of every size found themselves faced with ransomware attacks at varying levels of sophistication, yet every one of them was damaging. And as we step into 2024, the first victims of ransomware attacks are already being reported. What c...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2023/10/12 2:32 p.m.389 views

Exploit for CVE-2023-38646

CVE-2023-38646 PoC Description This is a Proof of Concept...

9.8CVSS10AI score0.97924EPSS
Exploits36
BDU FSTEC
BDU FSTEC
added 2023/09/13 12:0 a.m.6 views

The vulnerability of the Azure HDInsights data analytics service, related to insufficient access control, allows attackers to escalate their privileges.

The vulnerability of the Azure HDInsight data analytics service is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges through a specially crafted request...

8.3CVSS7.5AI score0.01874EPSS
Exploits0References3
Talos Blog
Talos Blog
added 2023/08/14 12:40 p.m.17 views

The rise of AI-powered criminals: Identifying threats and opportunities

AIs influence is growing across the security space, bringing with it major implications for cybercriminals and defenders. The recent adoption of AI has raised significant concerns for cybersecurity due to the many ways that criminals can use AI for disruption and profit. Defenders and law...

7AI score
Exploits0
CNVD
CNVD
added 2023/07/12 12:0 a.m.12 views

Smartbi Logic Vulnerability

Smartbi is a one-stop big data analytics platform. Smartbi suffers from a logic vulnerability that can be exploited by an attacker to gain server privileges...

7AI score
Exploits0References1
Talos Blog
Talos Blog
added 2023/07/10 12:0 p.m.12 views

Gergana Karadzhova-Dangela wants to send the ladder back down to the next generation of incident responders

Gergana Karadzhova-Dangela is used to being with users during some of their toughest moments. Today, she spends much of her time responding to active cybersecurity incidents with Cisco Talos Incident Response, helping customers work through active attacks, many of which put personal data or...

6.9AI score
Exploits0
NVD
NVD
added 2023/04/27 10:15 p.m.32 views

CVE-2023-1967

Keysight N8844A Data Analytics Web Service deserializes untrusted data without sufficiently verifying the resulting data will be valid...

9.8CVSS9.6AI score0.00799EPSS
Exploits0References1
Prion
Prion
added 2023/04/27 10:15 p.m.14 views

Design/Logic Flaw

Keysight N8844A Data Analytics Web Service deserializes untrusted data without sufficiently verifying the resulting data will be valid...

7.5CVSS9.4AI score0.00799EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder