Lucene search
K

83 matches found

OSV
OSV
added 2025/05/01 1:15 p.m.6 views

DEBIAN-CVE-2025-37757

In the Linux kernel, the following vulnerability has been resolved: tipc: fix memory leak in tipclinkxmit In case the backlog transmit queue for system-importance messages is overloaded, tipclinkxmit returns -ENOBUFS but the skb list is not purged. This leads to memory leak and failure when a skb...

5.5CVSS5.6AI score0.00164EPSS
Exploits0References1
CVE
CVE
added 2025/05/01 12:56 p.m.144 views

CVE-2025-37757

CVE-2025-37757 : In the Linux kernel’s TIPC path, when the backlog transmit queue for system-importance messages is overloaded, tipc_link_xmit() may return -ENOBUFS without purging the skb list, causing a memory leak and potential failure when an skb is allocated. The provided documents indicate ...

5.5CVSS6.9AI score0.00164EPSS
Exploits0References11Affected Software1
HackRead
HackRead
added 2025/04/24 11:26 a.m.8 views

Securing Fintech Operations Through Smarter Controls and Automation

With the rise of fintechs, accuracy alone isn’t enough, security and reliability are just as necessary. For fintech…...

7.5AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/04/21 1:0 p.m.12 views

Top Lessons from Take Command 2025

The live sessions may be over, but with every talk now available on demand, it’s the perfect time to reflect on the biggest takeaways from this year’s summit—and how they can help security teams move faster, act smarter, and take control of their attack surface. From red teaming tactics to...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2025/04/15 12:0 p.m.12 views

Insights from the field:  Key Findings from the ICIT report on Government Cloud Security

Wiz partnered with the Institute for Critical Infrastructure Technology ICIT publishing a report around findings from a survey given to federal and state agencies, highlighting the growing importance of cloud and AI technologies, and concerns around available resources and data protections...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/02 10:0 a.m.21 views

How SSL Misconfigurations Impact Your Attack Surface

When assessing an organization's external attack surface, encryption-related issues especially SSL misconfigurations receive special attention. Why? Their widespread use, configuration complexity, and visibility to attackers as well as users make them more likely to be exploited. This highlights...

7.1AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2025/03/24 6:29 a.m.12 views

The first 24 hours of a cyber incident. A practical playbook

TL;DR The first 24 hours after a cyber incident are critical for containment and recovery. Small and medium-sized businesses SMBs often lack resources, but swift action is still possible. This playbook provides clear steps to follow in the heat of a breach: who to contact, what to do, and how to...

7.2AI score
Exploits0
ICS
ICS
added 2025/03/11 6:0 a.m.29 views

Optigo Networks Visual BACnet Capture Tool / Optigo Visual Networks Capture Tool

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication, gain control over the products, or impersonate the web applications. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.7CVSS7.4AI score0.00362EPSS
Exploits0References10
Schneier on Security
Schneier on Security
added 2025/02/05 12:3 p.m.11 views

On Generative AI Security

Microsoft's AI Red Team just published "Lessons from Red Teaming 100 Generative AI Products." Their blog post lists "three takeaways," but the eight lessons in the report itself are more useful: 1. Understand what the system can do and where it is applied. 2. You don't have to compute gradients t...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2025/01/09 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-7189-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.07349EPSS
Exploits13References2
Akamai Blog
Akamai Blog
added 2024/07/03 1:0 p.m.12 views

Sustainability and ESG: Understanding the Difference and Why It Matters

...

7.3AI score
Exploits0
Citrix
Citrix
added 2023/11/24 12:0 a.m.6 views

CPU consumed by a session on VDA mismatches associated session or published apps importance level

The CPU resource consumed by a session on a XenApp Server does not match the associated session and/or published application importance levels...

7.1AI score
Exploits0
Talos Blog
Talos Blog
added 2023/09/07 6:0 p.m.20 views

A secondhand account of the worst possible timing for a scammer to strike

Welcome to this weeks edition of the Threat Source newsletter. Up until last week, I had never considered the timing of a scam to be important. Im so used to just swiping away emails or text messages at random times during the day that Id never considered what would happen if an adversary happene...

6.7AI score
Exploits0
HackRead
HackRead
added 2023/07/26 9:43 p.m.18 views

Empowering Future Minds: The Indispensable Role of Coding for Kids

By Waqas Why Coding for Kids is Vital - Importance & Benefits Explained! In an era dominated by rapid technological… This is a post from HackRead.com Read the original post: Empowering Future Minds: The Indispensable Role of Coding for Kids...

7AI score
Exploits0
Akamai Blog
Akamai Blog
added 2023/07/25 1:0 p.m.11 views

Why It’s Important to Make Tech More Accessible

...

7AI score
Exploits0
HackRead
HackRead
added 2023/07/19 11:3 p.m.23 views

Instagram Insights Explained: Why Instagram Average Engagement Rate Matters

By Owais Sultan Instagram insight is a great way to track your progress and campaigns. Discover the importance of Instagram engagement… This is a post from HackRead.com Read the original post: Instagram Insights Explained: Why Instagram Average Engagement Rate Matters...

6.9AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/07/11 12:0 a.m.9 views

Guide to Operationalizing Zero Trust

Zero Trust is no longer a buzzword but an essential element in enterprise security architecture. Operating on the 'never trust, always verify' principle, Zero Trust plays a vital role in protecting enterprise assets and data. However, operationalizing Zero Trust can be challenging for businesses...

6.9AI score
Exploits0
HackRead
HackRead
added 2023/06/07 10:24 p.m.13 views

How to Create an Accessible Website and Why It Matters

By Owais Sultan Have you ever tried to access a website only to find that its difficult or impossible to navigate?… This is a post from HackRead.com Read the original post: How to Create an Accessible Website and Why It Matters...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/04/27 4:0 p.m.24 views

Why you should practice rollbacks to prevent data loss in a ransomware attack

The security community is continuously changing, growing, and learning from each other to better position the world against cyberthreats. In the latest post of our Community Voices blog series, Microsoft Security Senior Product Marketing Manager Brooke Lynn Weenig talks with Tanya Janca, Founder...

6.3AI score
Exploits0
Snyk
Snyk
added 2023/04/04 8:19 a.m.2 views

Malicious Package

Overview gina is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was installe...

9.8CVSS7.1AI score
Exploits0References3
Rows per page
Query Builder