210 matches found
SUSE CVE-2010-3873
The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service heap memory corruption and panic or possibly have unspecified other impact via malformed 1 X25FACCALLINGAE or 2 X25FACCALLEDAE data, related t...
SUSE CVE-2010-4164
Multiple integer underflows in the x25parsefacilities function in net/x25/x25facilities.c in the Linux kernel before 2.6.36.2 allow remote attackers to cause a denial of service system crash via malformed X.25 1 X25FACCLASSA, 2 X25FACCLASSB, 3 X25FACCLASSC, or 4 X25FACCLASSD facility data, a...
SUSE CVE-2016-4580
The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request...
TrickBot gang members sanctioned after pandemic ransomware attacks
In a collaborative partnership, officials in the United States and the United Kingdom unmasked and imposed financial sanctions against seven members of the notorious Russian gang TrickBot alias "TrickLoader", a mainstream banking Trojan turned malware-as-a-service MaaS platform for other criminal...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Hardcoded credentials
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Key-Systems Global Facilities Management Software 信任管理问题漏洞
Key-Systems Global Facilities Management Software Key-Systems GFMS is a global facilities management software from Key-Systems. A security vulnerability exists in Key Systems Management Global Facilities Management Software GFMS version 3 that stems from the use of hard-coded credentials, resulti...
CVE-2022-45766
The CVE-2022-45766 entry concerns Key Systems Management’s GFMS software, version 3. It states that hardcoded credentials exist in GFMS v3, which could allow remote attackers to impact the availability, confidentiality, accessibility and dependability of electronic key boxes. The provided referen...
CVE-2022-45766
Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...
Hive Ransomware Infrastructure Seized in Joint International Law Enforcement Effort
In what's a case of hacking the hackers, the darknet infrastructure associated with the Hive ransomware-as-a-service RaaS operation has been seized as part of a coordinated law enforcement effort involving 13 countries. "Law enforcement identified the decryption keys and shared them with many of...
Stopping C2 communications in human-operated ransomware through network protection
Command-and-control C2 servers are an essential part of ransomware, commodity, and nation-state attacks. They are used to control infected devices and perform malicious activities like downloading and launching payloads, controlling botnets, or commanding post-exploitation penetration frameworks ...
Introducing Malwarebytes Managed Detection and Response (MDR)
With our Managed Detection and Response MDR service now generally available for businesses and MSPs, you may be wondering: What is MDR, how does Malwarebytes MDR work, and do I need it? Underpinned by our award-winning EDR technology, Malwarebytes MDR offers powerful and affordable threat...
IBM Maximo Asset Management Authentication Error Vulnerability
IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from International Business Machines IBM. The solution enables the management of all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control ov...
accreditedfacilitiesconsultingandmanagement.com Cross Site Scripting vulnerability OBB-2845828
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
westernfacilities.com.au Cross Site Scripting vulnerability OBB-2839925
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Predatory Sparrow massively disrupts steel factories while keeping workers safe
Stuxnets attack on Irans uranium enrichment facilities manifested fears of cyberattacks leaking into the real world. What once was theory is now upon us. Two weeks ago, multiple Iranian steel facilities experienced a cyberattack that might have been pulled off by what many cybersecurity experts i...
“Free UK visa” offers on WhatsApp are fakes
A student friend recently shared a WhatsApp message, unsure if it was scam. The message claims to offer an easy to route to free visas, housing, accommodation, and medicine access. Heres how we know it was a scam, and where it lead. It read as follows: UK GOVERNMENT JOB RECRUITMENT 2022: This is...
Online Sports Complex Booking System SQL注入漏洞(CNVD-2022-58669)
Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. page=facilities/managefacility&id= lacks validation of external input SQL statements, which can be exploited to execute illegal SQL commands to steal sensitive database data...
CVE-2022-29994
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=facilities/managefacility&id=...