Lucene search
K

5465 matches found

Packet Storm News
Packet Storm News
added 2025/08/04 12:0 a.m.3 views

Experimental Evaluation of Post-Quantum Homomorphic Encryption for Privacy-Preserving V2X Communication

Intelligent Transportation Systems ITS fundamentally rely on vehicle-generated data for applications such as congestion monitoring and route optimization, making the preservation of user privacy a critical challenge. Homomorphic Encryption HE offers a promising solution by enabling computation on...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2025/07/31 4:0 p.m.14 views

Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats

Microsoft Threat Intelligence has uncovered a cyberespionage campaign by the Russian state actor we track as Secret Blizzard that has been targeting embassies located in Moscow using an adversary-in-the-middle AiTM position to deploy their custom ApolloShadow malware. ApolloShadow has the...

7.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/31 1:49 p.m.2 views

CVE-2025-54422

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. In versions 1.16.1 and below, a critical security vulnerability exists in password handling mechanisms. During encrypted sandbox creation, user passwords are transmitted via shared memory,...

6.9CVSS7.3AI score0.0007EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/07/30 12:0 a.m.2 views

Malleability-Resistant Encrypted Control System with Disturbance Compensation and Real-Time Attack Detection

This study proposes an encrypted PID control system with a disturbance observer DOB using a keyed-homomorphic encryption KHE scheme, aiming to achieve control performance while providing resistance to malleability-based attacks. The controller integrates a DOB with a PID structure to compensate f...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/07/29 3:38 p.m.5 views

How the FBI got everything it wanted (re-air) (Lock and Code S06E15)

This week on the Lock and Code podcast… For decades, digital rights activists, technologists, and cybersecurity experts have worried about what would happen if the US government secretly broke into people’s encrypted communications. The weird thing, though, is that, in 2018, it already happened...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/07/29 3:38 p.m.5 views

How the FBI got everything it wanted (re-air) (Lock and Code S06E15)

This week on the Lock and Code podcast… For decades, digital rights activists, technologists, and cybersecurity experts have worried about what would happen if the US government secretly broke into people’s encrypted communications. The weird thing, though, is that, in 2018, it already happened...

7.5AI score
Exploits0
Cvelist
Cvelist
added 2025/07/29 12:47 p.m.7 views

CVE-2025-54422 Sandboxie exposes encrypted sandbox key during password change

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. In versions 1.16.1 and below, a critical security vulnerability exists in password handling mechanisms. During encrypted sandbox creation, user passwords are transmitted via shared memory,...

6.9CVSS0.0007EPSS
Exploits0References3
OSV
OSV
added 2025/07/29 12:47 p.m.3 views

CVE-2025-54422 Sandboxie exposes encrypted sandbox key during password change

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. In versions 1.16.1 and below, a critical security vulnerability exists in password handling mechanisms. During encrypted sandbox creation, user passwords are transmitted via shared memory,...

6.9CVSS7.1AI score0.0007EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/29 12:0 a.m.6 views

PT-2025-31199 · Sandboxie · Sandboxie

Name of the Vulnerable Software and Affected Versions: Sandboxie versions 1.16.1 and earlier Description: Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. A critical security issue exists in password handling mechanisms. During encrypted...

6.9CVSS6.6AI score0.0007EPSS
Exploits0References9
Packet Storm News
Packet Storm News
added 2025/07/28 12:0 a.m.1 views

Development and Analysis of a Secured VoIP System for Surveillance Activities

Since the 1990s, the telephone has been the primary mode of communication. However, Voice over Internet Protocol VoIP, which is a highly straightforward and affordable form of data transfer, is now becoming an important part of daily communication. VoIP is the technology that makes it possible to...

6.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/28 12:0 a.m.3 views

Collusion Resistant DNS with Private Information Retrieval

There has been a growing interest in Internet user privacy, demonstrated by the popularity of privacy-preserving products such as Telegram and Brave, and the widespread adoption of HTTPS. The Domain Name System DNS is a key component of Internet-based communication and its privacy has been...

6.7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/07/25 11:22 p.m.1 views

SUSE CVE-2025-38455

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV-ES intra host migration if vCPU creation is in-flight Reject migration of SEV-ES state if either the source or destination VM is actively creating a vCPU, i.e. if kvmvmioctlcreatevcpu is in the section betwee...

6.6CVSS6.3AI score0.00147EPSS
Exploits0References22
OSV
OSV
added 2025/07/25 4:15 p.m.0 views

DEBIAN-CVE-2025-38455

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV-ES intra host migration if vCPU creation is in-flight Reject migration of SEV-ES state if either the source or destination VM is actively creating a vCPU, i.e. if kvmvmioctlcreatevcpu is in the section betwee...

5.5CVSS5.4AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 4:15 p.m.8 views

UBUNTU-CVE-2025-38455

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV-ES intra host migration if vCPU creation is in-flight Reject migration of SEV-ES state if either the source or destination VM is actively creating a vCPU, i.e. if kvmvmioctlcreatevcpu is in the section betwee...

5.5CVSS6AI score0.00147EPSS
Exploits0References30
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a vCPU creation contention condition during SEV migration that could lead to a crash...

5.5CVSS6.8AI score0.00147EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.5 views

The vulnerability of the config.xml file in TP-Link Archer C50 Wi-Fi routers allows a hacker to gain unauthorized access to protected information.

The vulnerability of the config.xml file in TP-Link Archer C50 Wi-Fi routers lies in the use of strictly encrypted credentials. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information from a remote location...

5.7CVSS5.8AI score0.00252EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.6 views

The vulnerability of the HPE Networking Instant On configuration and access point management tool lies in its use of strictly encrypted credentials. This allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the HPE Networking Instant On configuration and access point management tool is related to the use of strictly encrypted credentials. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain increased privileges...

10CVSS7.5AI score0.01003EPSS
Exploits0References2Affected Software1
Packet Storm News
Packet Storm News
added 2025/07/17 12:0 a.m.2 views

IDFace: Face Template Protection for Efficient and Secure Identification

As face recognition systems FRS become more widely used, user privacy becomes more important. A key privacy issue in FRS is protecting the user's face template, as the characteristics of the user's face image can be recovered from the template. Although recent advances in cryptographic tools such...

7AI score
Exploits0
F5 Networks
F5 Networks
added 2025/07/16 4:4 p.m.8 views

K000152602: Multiple Moby vulnerabilities

Security Advisory Description CVE-2023-28840 Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby, is common...

8.7CVSS7.3AI score0.02733EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2025/07/15 12:0 a.m.5 views

The vulnerability of the “Tekon” SCADA system, which stems from the use of strictly encrypted account data, allows a intruder to enhance their privileges and execute arbitrary codes.

The vulnerability of the “Tekon” SCADA system is related to the use of strictly encrypted account data. Exploiting this vulnerability can allow a malicious actor to increase their privileges and execute arbitrary codes remotely...

9.9CVSS5.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder