Lucene search
K

8751 matches found

CNVD
CNVD
added 2019/04/23 12:0 a.m.1 views

Stack Overflow Vulnerability in Devs Files of Turing Open Object Development Environment

Beijing Turing Kaiwu Technology Co., Ltd. is a company that deals with technology development; computer system services; data processing; basic software services; application software services and other items. A stack overflow vulnerability exists in the Devs file of the Turing Kaiwu development...

7.3AI score
Exploits0
Tibco
Tibco
added 2019/04/22 5:34 p.m.12 views

TIBCO Security Advisory: April 24, 2019 - TIBCO BPM Enterprise -2019-8995

TIBCO BPM Enterprise Open Redirect Vulnerability Original release date: April 24,2019 Last revised: CVE-2019-8995 Source: TIBCO Software Inc. TIBCO ActiveMatrix BPM Open Redirect Vulnerability Original release date: April 24, 2019 Last revised: -- Source: TIBCO Software Inc. Systems Affected TIBC...

6.1CVSS5.5AI score0.01137EPSS
Exploits0Affected Software3
Fedora
Fedora
added 2019/04/22 5:11 a.m.16 views

[SECURITY] Fedora 29 Update: meson-0.50.0-4.fc29

Meson is a build system designed to optimize programmer productivity. It aims to do this by providing simple, out-of-the-box support for modern software development tools and practices, such as unit tests, coverage reports, Valgrind, CCache and the like...

2.1AI score
Exploits0
CNVD
CNVD
added 2019/04/22 12:0 a.m.3 views

SAP HANA Code Issue Vulnerability

SAP HANA is a set of high-performance real-time data analytics platform from Germany's SAP SAP. The platform provides data query functions to support users to query real-time business data query and analysis. SAP HANA has a code issue vulnerability that originates from an improperly designed or...

6CVSS7AI score0.00352EPSS
Exploits0References1
Prion
Prion
added 2019/04/17 10:29 p.m.20 views

Design/Logic Flaw

A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...

7.2CVSS7.5AI score0.00392EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/04/17 10:29 p.m.20 views

CVE-2019-1654

A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...

7.8CVSS7.6AI score0.00392EPSS
Exploits0References2
OSV
OSV
added 2019/04/17 10:29 p.m.4 views

CVE-2019-1654

A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...

7.8CVSS7.1AI score0.00392EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/17 9:45 p.m.19 views

CVE-2019-1654 Cisco Aironet Series Access Points Development Shell Access Vulnerability

A vulnerability in the development shell devshell authentication for Cisco Aironet Series Access Points APs running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the...

7.8CVSS7.6AI score0.00392EPSS
Exploits0References2
Fedora
Fedora
added 2019/04/17 4:5 p.m.18 views

[SECURITY] Fedora 30 Update: toolbox-0.0.8-2.fc30

Toolbox is offers a familiar RPM based environment for developing and debugging software that runs fully unprivileged using Podman...

5.1AI score
Exploits0
Hacker One
Hacker One
added 2019/04/11 8:27 p.m.575 views

Starbucks: Store Development Resource Center was vulnerable to a Remote Code Execution - Unauthenticated Remote Command Injection (CVE-2019-0604)

l00ph0le discovered an endpoint on the Store Development Resource Center site at https://sdrc.starbucks.com/layouts/15/picker.aspx was vulnerable to a deserialization RCE in Microsoft Sharepoint per CVE-2019-0604. @l00ph0le — thank you for reporting this vulnerability, your patience while we...

7.5CVSS2.2AI score0.99913EPSS
Exploits29
CNVD
CNVD
added 2019/04/10 12:0 a.m.4 views

Microsoft Open Enclave SDK Information Disclosure Vulnerability

Microsoft Open Enclave SDK is a Microsoft SDK Software Development Kit for building secure zone applications in C and C ++. An information disclosure vulnerability exists in the Open Enclave SDK, which arises from errors such as configuration during operation of a networked system or product. An...

5.5CVSS6.1AI score0.0156EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2019/04/09 3:0 p.m.95 views

Say hello to Baldr, a new stealer on the market

By William Tsing, Vasilios Hioureas, and Jérôme Segura Over the past few months, we have noticed increased activity and development of new stealers. Unlike many banking Trojans that wait for the victim to log into their bank's website, stealers typically operate in grab-and-go mode. This means th...

6.6AI score
Exploits0
Kitploit
Kitploit
added 2019/04/06 12:49 p.m.166 views

Pyrit - The Famous WPA Precomputed Cracker

Pyrit allows you to create massive databases of pre-computed WPA/WPA2-PSK authentication phase in a space-time-tradeoff. By using the computational power of Multi-Core CPUs and other platforms through ATI-Stream,Nvidia CUDA and OpenCL, it is currently by far the most powerful attack against one o...

7.2AI score
Exploits0References6
Wallarm Lab
Wallarm Lab
added 2019/04/05 2:56 p.m.71 views

8 Tips and Best Practices to Build a Solid Cloud Migration Strategy for 2019

Here are eight fool-proof practices that can help you move your workloads to the cloud. A quick look at cloud migration. Cloud migration involves moving an organization’s data storage and IT operations to a cloud network. Cloud computing services are hosted in a multi-tenant environment and can b...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/04/04 6:34 p.m.4 views

Hackers Could Turn Pre-Installed Antivirus App on Xiaomi Phones Into Malware

What could be worse than this, if the software that's meant to protect your devices leave backdoors open for hackers or turn into malware? Researchers today revealed that a security app that comes pre-installed on more than 150 million devices manufactured by Xiaomi, China's biggest and world's 4...

8.2AI score
Exploits0
CNVD
CNVD
added 2019/04/04 12:0 a.m.2 views

Mozilla Thunderbird Code Issue Vulnerability

Mozilla Thunderbird is the United States Mozilla Foundation of a set of independent from MozillaApplicationSuite e-mail client software. The software supports IMAP and POP mail protocols as well as HTML mail format. A code issue vulnerability exists in versions of Mozilla Thunderbird prior to 60....

9.8CVSS8.7AI score0.01582EPSS
Exploits0References1
Fedora
Fedora
added 2019/04/03 3:31 a.m.40 views

[SECURITY] Fedora 29 Update: edk2-20190308stable-1.fc29

EDK II is a development code base for creating UEFI drivers, applications and firmware images...

9.1CVSS2.9AI score0.02271EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/04/03 12:0 a.m.46 views

Fedora Update for qt FEDORA-2019-b5e690b96e

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS6.2AI score0.01384EPSS
Exploits1References2
Kitploit
Kitploit
added 2019/04/01 8:37 p.m.163 views

Mimikatz v2.2.0 - A Post-Exploitation Tool to Extract Plaintexts Passwords, Hash, PIN Code from Memory

mimikatz is a tool I've made to learn C and make somes experiments with Windows security. It's now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets. But that's not all!...

7.4AI score
Exploits0References6
Fedora
Fedora
added 2019/03/31 3:2 a.m.27 views

[SECURITY] Fedora 29 Update: qt-4.8.7-45.fc29

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

5.5CVSS1.7AI score0.01384EPSS
Exploits1
Rows per page
Query Builder