The Sweeping Danger of the AT&T Phone Records Breach

Telecom giant AT&T says a major data breach has exposed the call and text records of “nearly all” of its customers, epitomizing the dire state of data security...

NetBox Cross-Site Scripting Vulnerability (CNVD-2024-37580)

NetBox is a Django, PostgreSql based tool for IP Address Management IPAM and Data Center Infrastructure Management DCIM from the NetBox community. A cross-site scripting vulnerability exists in NetBox v4.0.3, which stems from the lack of effective filtering and escaping of user-supplied data in t...

CVE-2024-5704 XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.7.0 - Missing Authorization to Authenticated (Subscriber+) Settings Update

The XPlainer – WooCommerce Product FAQ WooCommerce Accordion FAQ Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions i.e. ffwinsertnewfaq, ffwhidediscountnotice, ffwdeleteallfaqs, ffwdeletesinglefaq, etc... in all...

Malicious code in @zitterorg/esse-quo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d19536d16e5140c179436239b74e66a32ca942db9fde40a93e8e18f75922d6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

How to Investigate 'Encrypted Data Event' from Malware Detection

Version Requirement This tool only works for malware inline detection events created by Veeam Backup & Replication 12.1.2 and newer. Previous versions of Veeam Backup & Replication are not supported. Protected Workload Guest OS Requirement This tool only supports investigating Windows-based...

MAL-2024-3837 Malicious code in vue-datadog (npm)

False positive caused by problematic ingestion. --- -= Per source details. Do not edit below this line.=-...

PCI DSS v4.0: What You Need to Know and What the End of v3.2.1 Means for the Future of Digital Payments

On March 31st, 2024, The Payments Card Industry Standards Security Council PCI SSC officially retired version 3.2.1 of the PCI Data Security Standard PCI DSS with the publication of its new sets of protocols and security standards for v4.0. With the continued rise in cyber threats against financi...

OPENSUSE-SU-2024:12457-1 libldap-data-2.6.3-2.1 on GA media

These are all security issues fixed in the libldap-data-2.6.3-2.1 package on the GA media of openSUSE Tumbleweed...

Learn to Secure Petabyte-Scale Data in a Webinar with Industry Titans

Data is growing faster than ever. Remember when petabytes that's 1,000,000 gigabytes! were only for tech giants? Well, that's so last decade! Today, businesses of all sizes are swimming in petabytes. But this isn't just about storage anymore. This data is ALIVE—it's constantly accessed, analyzed,...

The vulnerability of the tipc_bufAppend() function in the implementation of the Transparent Inter-Process Communication (TIPC) protocol in the Linux operating system allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tipcbufAppend function in the net/tipc/msg.c module of the Linux operating system’s Transparent Inter-Process Communication TIPC protocol implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow a remote attacker...

CVE-2024-38280

An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text...

CVE-2024-27855

The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. A shortcut may be able to use sensitive data with certain actions without prompting the user...

CVE-2023-40389

CVE-2023-40389 affects macOS Monterey 12.7.4 and macOS Ventura 13.6.5, where the issue is described as an elevation of data-container access restriction that could allow an app to access sensitive user data. The connected documents confirm the root cause as improper restriction of data container ...

GHSA-5Q6C-FFVG-XCM9 Remote code execution in mlflow

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

CVE-2024-0520 Remote Code Execution due to Full Controlled File Write in mlflow/mlflow

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

CVE-2024-0520 Remote Code Execution due to Full Controlled File Write in mlflow/mlflow

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

CVE-2024-0520

CVE-2024-0520 affects mlflow/mlflow v8.2.1, enabling remote code execution via command injection in mlflow.data.http_dataset_source.py when loading an HTTP URL dataset. The filename gathered from Content-Disposition or URL path is used to form the final file path without proper sanitization, allo...

CGA-249R-QRJ5-XP22

Bulletin has no description...

Unpacking 2024's SaaS Threat Predictions

Early in 2024, Wing Security released its State of SaaS Security report, offering surprising insights into emerging threats and best practices in the SaaS domain. Now, halfway through the year, several SaaS threat predictions from the report have already proven accurate. Fortunately, SaaS Securit...

Malicious code in @juiggitea/vero-placeat-ea-consequuntur (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ce8c3feba471a4cbe36afc647558994783b5f59eb77754f5f4401e1abf65fcf5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...