Lucene search
K

5468 matches found

NVD
NVD
added 2019/12/18 6:15 p.m.12 views

CVE-2019-8522

A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4. An encrypted volume may be unmounted and remounted by a different user without prompting for the password...

5.5CVSS5.5AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2019/12/18 6:15 p.m.3 views

CVE-2019-8522

A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4. An encrypted volume may be unmounted and remounted by a different user without prompting for the password...

5.5CVSS6.7AI score0.00253EPSS
Exploits0References1
Prion
Prion
added 2019/12/18 6:15 p.m.14 views

Design/Logic Flaw

A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4. An encrypted volume may be unmounted and remounted by a different user without prompting for the password...

2.1CVSS4.7AI score0.00253EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/12/18 6:15 p.m.20 views

Code injection

An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF...

5CVSS6.8AI score0.01222EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/12/18 5:33 p.m.23 views

CVE-2019-8772

An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF...

7.7AI score0.01222EPSS
Exploits0References2
CVE
CVE
added 2019/12/18 5:33 p.m.78 views

CVE-2019-8522

CVE-2019-8522 affects macOS DiskArbitration. The issue is a logic flaw in state management that could allow an encrypted volume to be unmounted and remounted by a different user without prompting for a password. Apple lists this vulnerability under macOS Mojave 10.14.3/10.14.4 context and explici...

5.5CVSS5.9AI score0.00253EPSS
Exploits0References1Affected Software1
Akamai Blog
Akamai Blog
added 2019/12/17 5:0 p.m.33 views

Inspecting TLS Web Traffic - Part 1

In this series of blogs I'm going to talk about how the continued move towards all web traffic being encrypted has impacted enterprise security. In this blog I'm going to focus on the basics - what is encrypted web traffic and how can you proactively control this. TLS encryption is the de-facto...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2019/12/13 12:0 a.m.14 views

SYS.1.2.2.A14

Ziel des Bausteins SYS.1.2.2 ist die Absicherung von Microsoft Windows Server 2012 und Microsoft Windows Server 2012 R2. Die Kern-Anforderung Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

7.3AI score
Exploits0References1
Carbon Black Blog
Carbon Black Blog
added 2019/12/10 3:20 p.m.20 views

Threat Analysis Unit (TAU) Threat Intelligence Notification: Cyborg Ransomware

Cyborg Ransomware was found being distributed via spear-phishing email campaign which contains a fake “Windows Update” email which appears as a ‘.jpg’ file in the email attachment, but is instead a ‘.exe’ binary file. It tries to tempt users to click on the malicious attachment file in order to...

6.7AI score
Exploits0
Symantec
Symantec
added 2019/12/10 12:0 a.m.40 views

Siemens SCALANCE W700/W1700 CVE-2018-14526 Information Disclosure Vulnerability

Description Siemens SCALANCE W700 and W1700 is prone to an information disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information. Successful exploits may lead to other attacks. The following versions of SCALANCE W700 and W1700 are affected: Siemens SCALANCE W700...

3.3CVSS1AI score0.01404EPSS
Exploits0References1Affected Software2
Packet Storm
Packet Storm
added 2019/12/09 12:0 a.m.136 views

SpotAuditor 5.3.2 Local Buffer Overflow

Exploit Title: SpotAuditor 5.3.2 - 'Base64' Local Buffer Overflow SEH Exploit Author: Kirill Nikolaev Date: 2019-12-06 Vulnerable Software: SpotAuditor Vendor Homepage: http://www.nsauditor.com/ Version: 5.3.2 Software Link: http://spotauditor.nsauditor.com/downloads/spotauditorsetup.exe Tested...

Exploits0
The Hacker News
The Hacker News
added 2019/12/06 11:2 a.m.4 views

New Linux Bug Lets Attackers Hijack Encrypted VPN Connections

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections. The...

7.4CVSS7.3AI score0.00838EPSS
Exploits0
OSV
OSV
added 2019/11/29 8:15 p.m.3 views

CVE-2019-5263

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305MAC and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting th...

5.5CVSS6.1AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2019/11/29 8:15 p.m.16 views

CVE-2019-5263

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305MAC and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting th...

5.5CVSS5.5AI score0.00307EPSS
Exploits0References1
Prion
Prion
added 2019/11/29 8:15 p.m.14 views

Information disclosure

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305MAC and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting th...

2.1CVSS5.5AI score0.00307EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2019/11/29 7:20 p.m.13 views

CVE-2019-5263

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305MAC and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting th...

5.5AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2019/11/27 6:15 p.m.17 views

CVE-2012-6655

An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which could let a local users obtain encrypted passwords...

3.3CVSS3.7AI score0.00448EPSS
Exploits1References6
OSV
OSV
added 2019/11/27 6:15 p.m.8 views

AZL-44049 CVE-2012-6655 affecting package accountsservice for versions less than 23.13.9-1

An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which could let a local users obtain encrypted passwords...

3.3CVSS5.7AI score0.00448EPSS
Exploits1References1
OSV
OSV
added 2019/11/27 6:15 p.m.2 views

DEBIAN-CVE-2012-6655

An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which could let a local users obtain encrypted passwords...

3.3CVSS5.8AI score0.00448EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/11/27 6:15 p.m.360 views

CVE-2012-6655

An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which could let a local users obtain encrypted passwords...

3.3CVSS5.8AI score0.00448EPSS
Exploits1References3
Rows per page
Query Builder