PT-2022-25484 · Trend Micro · Trend Micro Deep Security +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security versions 20 Trend Micro Cloud One - Workload Security Agent for Windows affected versions not specified Description: An Out-of-bounds read issue could allow a local attacker to disclose sensitive information on...

autogluon.multimodal vulnerable to unsafe YAML deserialization

Impact A potential unsafe deserialization issue exists within the autogluon.multimodal module, where YAML files are loaded via yaml.load instead of yaml.safeload. The deserialization of untrusted data may allow an unprivileged third party to cause remote code execution, denial of service, and...

Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers

A number of financial institutions in and around New York City are dealing with a rash of super-thin "deep insert" skimming devices designed to fit inside the mouth of an ATMs card acceptance slot. The card skimmers are paired with tiny pinhole cameras that are cleverly disguised as part of the...

Shopify: Shop App - Attacker is able to intercept authorization code during authentication (OAuth) and is able to get access to Microsoft Outlook email account

A vulnerability was discovered in the Shop App's Microsoft Outlook OAuth flow, where a malicious app could intercept the authorization code during authentication due to the use of deep links. This could allow an attacker to gain access to the victim's emails. The issue was mitigated by implementi...

Grey Time: The Hidden Cost of Incident Response

The time cost of incident response for security teams may be greater – and more complex – than we’ve been assuming. To see that in action, let’s look at a hypothetical scenario that should feel familiar to most cybersecurity analysts. An everyday story A security engineer, Casey, is tuning a SIEM...

An arbitrary file reading vulnerability exists in SANGFOR Internet Optimization Management System of Deep Impact Technology Co.

SANGFOR Internet optimization management system is a security product that integrates Internet behavior management, network access, device access and business access behavior analysis. Core advantages: multiple authentication methods, comprehensive audit capability, support for multiple applicati...

jackson-databind: denial of service via a large depth of nested objects

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

TikTok Users Were Vulnerable to a Single-Click Attack

Microsoft disclosed the flaw in the Android app’s deep link verification process, which has since been fixed...

Debian: Security Advisory (DLA-3084-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

batchpatcher (=2.2.0), excel-trans (=1.22.1) potentially affected by unknown CVE via deep-translator (>=1.9.0 <=1.9.2)

deep-translator PYPI version =1.9.0, =1.9.2 is affected by a known vulnerability. The following packages have a transitive dependency on deep-translator and may be impacted: - batchpatcher =2.2.0 - excel-trans =1.22.1 Source cves: unknown CVE Source advisory: OSV:PYSEC-2022-252...

PYSEC-2022-252

The deep-translator project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...

MAL-2022-2392 Malicious code in deep-edula (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4986ffa2ccc23b4c0494dd6e754f5a4550ca5a9ca580095d0cb46f38eab36e04 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in deep-edula (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4986ffa2ccc23b4c0494dd6e754f5a4550ca5a9ca580095d0cb46f38eab36e04 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

golang: regexp: stack exhaustion via a deeply nested expression

A stack overflow flaw was found in Golang's regexp module, which can crash the runtime if the application using regexp accepts very long or arbitrarily long regexps from untrusted sources that have sufficient nesting depths. To exploit this vulnerability, an attacker would need to send large...

Examining New DawDropper Banking Dropper and DaaS on the Dark Web

In this blog post, we discuss the technical details of a new banking dropper that we have dubbed DawDropper, give a brief history of banking trojans released in early 2022 that use malicious droppers, and elaborate on cybercriminal activities related to DaaS in the deep web...

CVE-2022-23101

OX App Suite through 7.10.6 allows XSS via appHandler in a deep link in an e-mail message...

CVE-2022-23101

OX App Suite through 7.10.6 allows XSS via appHandler in a deep link in an e-mail message...

CVE-2022-23101

The CVE-2022-23101 issue affects Open-Xchange OX App Suite up to version 7.10.6, with a cross-site scripting (XSS) flaw exploitable via the appHandler in a deep link contained in an e‑mail. Root cause described across connected documents is improper handling of deep links by appHandler, enabling ...

CVE-2022-23101

OX App Suite through 7.10.6 allows XSS via appHandler in a deep link in an e-mail message...

set-deep-prop Prototype Pollution

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...