8 matches found
EUVD-2021-16365
Malware in sbrugna...
CVE-2024-52059 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional (Security Plugins) allows Overflow Variables and Tags.
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow', Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional Security Plugins allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from...
CVE-2024-52059 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional (Security Plugins) allows Overflow Variables and Tags.
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow', Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional Security Plugins allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from...
CVE-2021-29891
IBM OPENBMC OP910 and OP940 could allow a privileged user to upload an improper site identity certificate that may cause it to lose network services. IBM X-Force ID: 207221...
CVE-2021-29891
Summary: IBM OPENBMC OP910 and OP940 are affected by CVE-2021-29891, where a privileged user could upload an improper site identity certificate, potentially causing loss of network services. The IBM bulletin confirms CVSS v3.0/3.1 base scores around 4.5–4.9 (MEDIUM) with network attack vector and...
CVE-2021-3034
An information exposure through log file vulnerability exists in Cortex XSOAR software where the secrets configured for the SAML single sign-on SSO integration can be logged to the '/var/log/demisto/' server logs when testing the integration during setup. This logged information includes the...
New SHA-1 Attack
There's a new, practical, collision attack against SHA-1: In this paper, we report the first practical implementation of this attack, and its impact on real-world security with a PGP/GnuPG impersonation attack. We managed to significantly reduce the complexity of collisions attack against SHA-1: ...
Critical Android FakeID Bug Allows Attackers to Impersonate Trusted Apps
There is a critical vulnerability in millions of Android devices that allows a malicious app to impersonate a trusted application in a transparent way, enabling an attacker to take a number of actions, including inserting malicious code into a legitimate app or even take complete control of an...