Lucene search
K

8752 matches found

ATTACKERKB
ATTACKERKB
added 2022/02/25 3:15 p.m.4 views

CVE-2021-45977

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC used as...

9.8CVSS7.8AI score0.01067EPSS
Exploits0References3
OSV
OSV
added 2022/02/25 3:15 p.m.6 views

CVE-2021-45977

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC used as...

9.8CVSS5.8AI score0.01067EPSS
Exploits0References2
NVD
NVD
added 2022/02/25 3:15 p.m.21 views

CVE-2021-45977

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC used as...

9.8CVSS0.01067EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/02/25 2:36 p.m.33 views

CVE-2021-45977

JetBrains IntelliJ IDEA 2021.3.1 Preview, IntelliJ IDEA 2021.3.1 RC, PyCharm Professional 2021.3.1 RC, GoLand 2021.3.1, PhpStorm 2021.3.1 Preview, PhpStorm 2021.3.1 RC, RubyMine 2021.3.1 Preview, RubyMine 2021.3.1 RC, CLion 2021.3.1, WebStorm 2021.3.1 Preview, and WebStorm 2021.3.1 RC used as...

9.8AI score0.01067EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/02/25 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:0561-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.0063EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2022/02/25 12:0 a.m.5 views

The vulnerability of the Remote Development Extension extension of the Visual Studio Code editor allows a hacker to execute arbitrary code.

The vulnerability of the Remote Development Extension extension of the Visual Studio Code editor is related to improper handling of code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.1CVSS8.1AI score0.02075EPSS
Exploits0References4
SonarSource Blog
SonarSource Blog
added 2022/02/24 12:0 a.m.26 views

Review your security vulnerabilities in GitHub with code scanning alerts

Today, for GitHub repositories, our SAST analysis provides fast, precise security feedback directly inside your pull requests. You instantly know how many vulnerabilities are detected and, until now, you would systematically go to SonarCloud to start investigating. Not anymore. From this point...

7.6AI score
Exploits0
CNNVD
CNNVD
added 2022/02/23 12:0 a.m.3 views

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A security vulnerability exists in Accusoft ImageGear, which can be exploited by an attacker to pass specially crafted data to an application, trigger a heap buffer overflow, and execute arbitrary code o...

9.8CVSS6.6AI score0.01494EPSS
Exploits1References4
Malwarebytes
Malwarebytes
added 2022/02/22 6:31 p.m.46 views

Xenomorph banking Trojan downloaded over 50,000 times from Play Store

Besides the name of the creature that “stars” in the Alien movies by 20th Century Fox, Xenomorph is also the name given to an Android banking Trojan. Researchers found this banking Trojan to be distributed on the official Google Play Store, with more than 50,000 installations. The researchers...

2.4AI score
Exploits0
ThreatPost
ThreatPost
added 2022/02/22 6:0 p.m.153 views

Xenomorph Malware Burrows into Google Play Users, No Facehugger Required

An Android trojan dubbed Xenomorph has nested in Google Play, already racking up more than 50,000 downloads from the official app store, researchers warned. For anyone who downloaded the “Fast Cleaner” app, it’s time to nuke it from orbit. According to a ThreatFabric analysis, Xenomorph has a...

8.5AI score
Exploits0References6
OpenVAS
OpenVAS
added 2022/02/22 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2022:0530-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.07191EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/02/22 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2022:0540-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.2AI score0.00552EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/02/22 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:0542-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS8AI score0.0444EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2022/02/21 4:32 p.m.13 views

CISA offers guidance on dealing with information manipulation

Malicious actors use influence operations, like spreading false information, to shape public opinion, undermine trust, amplify division, and create dissension. In response, the Cybersecurity & Infrastructure Security Agency CISA has released CISA Insights: Preparing for and Mitigating Foreign...

0.9AI score
Exploits0
Code423n4
Code423n4
added 2022/02/19 12:0 a.m.5 views

High Risk Title

Lines of code 2022-01-dev-test-repo-findings/README.md Line 1 in 21e7cf8 | | THIS IS A TEST REPO FOR DEV PURPOSES ---|--- 2022-01-dev-test-repo-findings/README.md Line 1 in 21e7cf8 | THIS IS A TEST REPO FOR DEV PURPOSES ---|--- Vulnerability details Impact Detailed description of the impact of th...

7.1AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2022/02/17 9:5 p.m.16 views

US Agencies Say Russian Hackers Compromised Defense Contractors

Kremlin-backed cyber actors lurked in the networks for months, obtaining sensitive documents related to weapons and infrastructure development...

3.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/02/17 12:0 a.m.4 views

PT-2022-5090 · Pallets +1 · Werkzeug +1

Name of the Vulnerable Software and Affected Versions: Pallets Werkzeug versions 2.1.0 and below Description: The issue is related to improper parsing of HTTP requests, which can allow an attacker to perform HTTP Request Smuggling using a crafted HTTP request with multiple requests included insid...

10CVSS6.1AI score0.07663EPSS
Exploits0References33
CNVD
CNVD
added 2022/02/16 12:0 a.m.26 views

Pybbs Cross-Site Scripting Vulnerability

Pybbs is a community forum for more practical Java development. A cross-site scripting vulnerability exists in Pybbs, which stems from the product's search box not effectively handling special characters in user input data. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6AI score0.00611EPSS
Exploits1References1
Wallarm Lab
Wallarm Lab
added 2022/02/15 4:25 p.m.14 views

Security Software Developer – Job Description and How to Become One

Introduction The cybersecurity industry is daily growing bigger daily and creating numerous roles for anyone to specialize in. One of the eye-catching perks of the industry is the annual pay which varies according to the role. This guide focuses on teaching a security software developer job...

8.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/15 12:0 a.m.9 views

Azure Functions Local Settings Detected

Azure Functions is a public cloud service from Microsoft providing a serverless computing platform which supports various programming languages C, Python, JavaScript.... Before deploying their functions to the cloud, developers often write and test their code in their local development environmen...

7.1AI score
Exploits0References2
Rows per page
Query Builder