Lucene search
K

132 matches found

CVE
CVE
added 2017/11/27 10:0 p.m.58 views

CVE-2015-7267

The CVE-2015-7267 entry applies to Samsung 850 Pro/PM851 SSDs and Seagate ST500LT015/ST500LT025 HDDs used in Lenovo ThinkPad T440s (BIOS 2.32) and W541 (BIOS 2.21), Dell Latitude E6410 (BIOS A16), and Latitude E6430 (BIOS A16). It describes a physical-access risk where, when the drives operate in...

4.2CVSS4.6AI score0.0033EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/11/27 10:0 p.m.46 views

CVE-2015-7268

The CVE-2015-7268 entry describes a hardware-level vulnerability affecting Samsung 850 Pro/PM851 SSDs and Seagate ST500LT015/ST500LT025 HDDs when used with Windows and specific Opal/eDrive configurations on certain Lenovo/Dell laptops. The issue allows physically proximate attackers to bypass sel...

4.2CVSS4.6AI score0.0033EPSS
Exploits0References2Affected Software1
Fedora
Fedora
added 2017/04/20 12:4 p.m.45 views

[SECURITY] Fedora 26 Update: mupdf-1.10a-5.fc26

MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...

5.5CVSS0.6AI score0.01378EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2017/01/06 12:0 a.m.34 views

openSUSE Security Update : kopete (openSUSE-2017-19)

This update for kopete fixes the following issues : - fix encrypting OTR messages after closing and re-opening kopete boo1016982, kde362535 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

5.4AI score
Exploits0References1
Lenovo
Lenovo
added 2016/08/12 12:0 a.m.32 views

Accessing data on Self-Encrypting drives while a system is in sleep state

Lenovo Security Advisory: LEN-2910 Potential Impact: Physical access of encrypted data Severity: Informational Summary: At the BlackHat Europe 2015 conference, KPMG disclosed an industry-wide vulnerability affecting hard disk drives that employ hardware-based Full Disk Encryption FDE. These drive...

6.6AI score
Exploits0
Lenovo
Lenovo
added 2016/08/12 12:0 a.m.13 views

Accessing data on Self-Encrypting drives while a system is in sleep state - Lenovo Support US

No description provided...

7.3AI score
Exploits0
OwnCloud
OwnCloud
added 2016/04/07 11:44 a.m.486 views

Bypass of application specific PIN - ownCloud

The ownCloud Android application does support setting a PIN that has to be provided before the application can be opened. An attacker may remove the PIN by clearing the application data via the Android system settings. By doing that the application information would be removed while the...

6.6AI score
Exploits0Affected Software1
Fedora
Fedora
added 2016/04/05 1:59 p.m.14 views

[SECURITY] Fedora 23 Update: vtun-3.0.3-15.fc23

VTun provides a method for creating Virtual Tunnels over TCP/IP networks and allows one to shape, compress, and encrypt traffic in those tunnels. Supported types of tunnels are: PPP, IP, Ethernet and most other serial protocols and programs. VTun is easily and highly configurable: it can be used...

1.3AI score
Exploits0
Packet Storm
Packet Storm
added 2016/01/13 12:0 a.m.87 views

Microsoft IExpress DLL Hijacking

Hi @ll, IExpress creates executable installers ° or self-extracting archives for Windows by embedding a .CAB archive and some strings as resources into a copy of the program %SystemRoot%\System32\WExtract.exe. These self-extracting archives/executable installers, especially those made by Microsof...

6.9CVSS0.5AI score0.02423EPSS
Exploits2
myhack58
myhack58
added 2015/10/22 12:0 a.m.28 views

Western data WD from the encrypted hard drive was traced to the presence of vulnerability-vulnerability warning-the black bar safety net

Researchers said, there are several versions of the encrypted Western Digital hard drive there are many vulnerabilities, the hack once you get to the physical contact of the opportunity, you can easily get inside the data, during which time you can disregard the hard disk password. Western Digita...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2015/10/20 2:4 p.m.12 views

Western Digital Self-Encrypting Drives Vulnerable

Some consumer-grade, self-encrypting external hard drives are littered with security vulnerabilities that render their encryption an afterthought. An academic paper published in late September took apart a number of drives manufactured by Western Digital that suffer from flaws that are trivial to...

Exploits0References1
NVD
NVD
added 2015/06/09 2:59 p.m.24 views

CVE-2015-4080

The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to 1 obtain sensitive information by sniffing the network and 2 obtain access to the device by encrypting messages...

6.8CVSS6.2AI score0.02364EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2014/09/17 12:0 a.m.49 views

krb5 security and bug fix update

1.6.1-78.el5 - gssapi: pull in upstream fix for a possible NULL dereference in spnego CVE-2014-4344, 1121509 1.6.1-77.el5 - fix what appears to be a cosmetic error in the patch for self-tests for CVE-2014-4341 1.6.1-76.el5 - run the backported self-tests, such as they are, for CVE-2014-4341...

7.8CVSS1.3AI score0.07138EPSS
Exploits0
ThreatPost
ThreatPost
added 2014/08/29 12:41 p.m.8 views

CryptoWall Ransomware Earns $1.1M, Encrypts 5 Billion Files

CryptoWall is a million-dollar business. The file-encrypting ransomware has netted the criminal gang responsible for its development and dispersal, more than $1.1 million in the six months it’s been in the wild, researchers at Dell SecureWorks’ Counter Threat Unit said in a report this week. The...

1.3AI score
Exploits0References4
The Hacker News
The Hacker News
added 2014/07/25 6:17 a.m.9 views

Intel launches Hardware-based Self-Encrypting Solid State Drives

Data security is a big task for businesses as well as a challenge for IT leaders, whether it be securing networks or devices. Past few months, we often came across various data breaches, the largest among all was Target data breach, which cost a business nearly $50,000 in lost productivity,...

6.7AI score
Exploits0
Fedora
Fedora
added 2014/06/27 2:28 a.m.27 views

[SECURITY] Fedora 20 Update: gnupg-1.4.17-1.fc20

GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...

2.1CVSS2.7AI score0.00451EPSS
Exploits0
ThreatPost
ThreatPost
added 2014/06/06 12:16 p.m.27 views

WordPress to Deploy SSL on All its Sites by End of 2014

The movement by technology companies to encrypt their respective corners of the Internet continues to gain steam as more and more are enabling SSL and other encryption technologies such as Perfect Forward Secrecy to ward off surveillance and enhance the privacy and security of user data. WordPres...

7.5AI score
Exploits0References6
OpenVAS
OpenVAS
added 2013/12/30 12:0 a.m.28 views

Fedora Update for gnupg FEDORA-2013-23615

Check for the Version of gnupg OpenVAS Vulnerability Test Fedora Update for gnupg FEDORA-2013-23615 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

5.8CVSS7AI score0.0503EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/10/29 12:0 a.m.25 views

CentOS Update for gnupg CESA-2013:1458 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.6AI score0.0503EPSS
Exploits1References2
Fedora
Fedora
added 2013/10/10 2:48 p.m.26 views

[SECURITY] Fedora 20 Update: gnupg-1.4.15-1.fc20

GnuPG GNU Privacy Guard is a GNU utility for encrypting data and creating digital signatures. GnuPG has advanced key management capabilities and is compliant with the proposed OpenPGP Internet standard described in RFC2440. Since GnuPG doesn't use any patented algorithm, it is not compatible with...

5.8CVSS2.7AI score0.0503EPSS
Exploits0
Rows per page
Query Builder