Unable to encrypt Identity disk on AWS when using encrypted master image

The AMI was created using an encrypted instance\snapshot. However, the MCS machines appear with identity disk "Not encrypted"...

The vulnerability of the Hyper-converged Infrastructure of Microsoft Azure Stack (HCI), which stems from the use of strictly encrypted credentials, allows attackers to escalate their privileges.

The vulnerability of the Hyper-converged Infrastructure of Microsoft Azure Stack HCI is related to the use of strictly encrypted credentials. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Siemens SINEMA Remote Connect lies in its insufficient limit on authentication attempts, allowing attackers to obtain encrypted user credentials.

The vulnerability of Siemens SINEMA Remote Connect relates to insufficient restrictions on authentication attempts. Exploiting this vulnerability could allow a malicious actor to obtain encrypted user credentials remotely...

The vulnerability of the Client Communication component of the Siemens SINEMA Remote Connect server allows a hacker to obtain encrypted user credentials.

The vulnerability of the Client Communication component in the Siemens SINEMA Remote Connect server is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability could allow a malicious actor to obtain encrypted user credentials remotely...

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 128.4.3 fixed: Folder corruption could cause Thunderbird to freeze and become unusable fixed: Message corruption could be propagated when reading mbox fixed: Folder compaction was not abandoned on shutdown fixed:...

Mageia: Security Advisory (MGASA-2024-0365)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2024-29917 · Cesanta · Cesanta Mongoose Web Server

Name of the Vulnerable Software and Affected Versions: Cesanta Mongoose Web Server version 7.14 Description: The issue allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space due to an Out-of-range Pointer Offset vulnerability...

CVE-2017-13309

In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

ZONEPOINT 安全漏洞

PRIMX ZONEPOINT is a secure encrypted messaging program from PRIMX Corporation. A security vulnerability exists in ZONEPOINT 2024.1 and earlier versions, which stems from the fact that a dedicated folder can be accessed by other users by default, allowing them to misuse technical files and perfor...

The vulnerability of the /etc/shadow file in microprogramming-based router software like LB-LINK allows a hacker to gain unauthorized access to protected information.

The vulnerability of the /etc/shadow file in microprogramming-based router software like LB-LINK lies in the use of strictly encrypted user credentials. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

CVE-2024-49504

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

CVE-2024-49504

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

UBUNTU-CVE-2024-49504

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

CVE-2024-49504 grub2 allows bypassing TPM-bound disk encryption on SL(E)M encrypted Images

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

CVE-2024-49504 grub2 allows bypassing TPM-bound disk encryption on SL(E)M encrypted Images

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

CVE-2024-49504

CVE-2024-49504 is referenced in multiple security advisories for grub2 (GRUB2) across EulerOS and Tencent/TencentOS Server ecosystems. The linked Nessus/OPENVAS entries identify that “grub2 allowed attackers with access to the grub shell to access files on the encrypted disks,” indicating a vulne...

CVE-2024-49504

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks...

CVE-2024-11159

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird 128.4.3 and Thunderbird 132.0.1...

CVE-2024-11159

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird 128.4.3 and Thunderbird 132.0.1...

CVE-2024-11159

Using remote content in OpenPGP encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird 128.4.3 and Thunderbird 132.0.1...