6 matches found
SonicWALL SMA1000 SQL注入漏洞
SonicWALL SMA1000 is a series of security mobile access solutions developed by the American company SonicWALL. It simplifies end-to-end secure remote access for enterprise resources hosted across local, cloud, and hybrid data centers. The SonicWall SMA1000 has a SQL injection vulnerability, which...
CISA Releases Capacity Enhancement Guides to Enhance Mobile Device Cybersecurity for Consumers and Organizations
CISA has released actionable Capacity Enhancement Guides CEGs to help users and organizations improve mobile device cybersecurity. The CEG: Mobile Device Cybersecurity Checklist for Consumers provides steps for consumers, including using strong authentication and enabling automatic operating syst...
Understanding Network Access in Windows AppContainers
Posted by James Forshaw, Project Zero Recently I've been delving into the inner workings of the Windows Firewall. This is interesting to me as it's used to enforce various restrictions such as whether AppContainer sandboxed applications can access the network. Being able to bypass network...
Watch Out! Mission Critical SAP Applications Are Under Active Attack
Cyber attackers are actively setting their sights on unsecured SAP applications in an attempt to steal information and sabotage critical processes, according to new research. "Observed exploitation could lead in many cases to full control of the unsecured SAP application, bypassing common securit...
Divide Between Work, Personal Data on Android Breached
SAN FRANCISCO–Researchers here at the RSA Conference demonstrated Thursday a way a hacker can bypass enterprise mobility management sandboxing tools known as Android for Work that are designed to segregate work and personal data on Android devices. In a proof-of-concept demonstration, researchers...
IBM Capacity Management Analytics Local Information Disclosure Vulnerability (CNVD-2016-01392)
IBM Capacity Management Analytics is a suite of capacity management analytics solutions for managing and predicting the utilization of IBM zEnterprise infrastructure resources. A local security vulnerability exists in IBM Capacity Management Analytics that allows a local attacker to exploit the...