MAL-2022-7063 Malicious code in weather-power-up (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a4fa4b856ba13413f1fa2757b592c0b5988dd18bd051989b3ca22ee0f975fc4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5390 Malicious code in pod-api-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 80e090d39edd41df4974cec8d792fc8b2d94bc0b6e25d65438ca010ce8f4694d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4270 Malicious code in lead_front_components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e9019a4ceb308c1dc53c702bca160a47e5ace72ef7230b8d21a7e83ad73583a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to an unspecified vulnerability in Java SE ( CVE-2022-21340)

Summary An unspecified vulnerability in Java SE - CVE-2022-21340 related to the Libraries Component has been identified that affects IBM Watson Assistant for IBM Cloud Pak for Data. Java SE is used by IBM Watson Assistant for IBM Cloud Pak for Data as part of its platform for developement of core...

Implications of Windows Subsystem for Linux for Adversaries & Defenders (Part 2)

This post is the second of a multi-part blog series that explores and highlights the different risks that Windows Subsystem for Linux WSL poses to an enterprise IT environment. Here we examine different TTPs that abuse WSL and assess different methods to defend against such threats. ← Go to Part ...

Fedora: Security Advisory for cobbler (FEDORA-2022-445ec90e7c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Authentication bypass in Apache Airflow

The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at...

Brave Software: Arbitrary file download due to bad handling of Redirects in WebTorrent

Summary: Previously I reported 963155 how an attacker can trick user into downloading malicious files using ".save torrent" feature, In this report I am going to reproduce the same behavior but by abusing a different feature. Description While I was testing webtorrent on brave I noticed that...

Brave Software: Arbitrary file download via "Save .torrent file" option can lead to Client RCE and XSS

Summary: An attacker can use the "Save .torrent file" option in WebTorrent to smuggle malicious files onto the client's machine. Description Brave allows users to download the ".torrent" via WebTorrent. WebTorrent decides whether a file is torrent or not based on the following headers...

Security Bulletin: SBB0002796

Summary Steps to update Java - QMF Workstation & QMF Vision Vulnerability Details CVEID: CVE-2019-4732 DESCRIPTION: IBM SDK, Java Technology Edition Version 7.0.0.0 through 7.0.10.55, 7.1.0.0 through 7.1.4.55, and 8.0.0.0 through 8.0.6.0 could allow a local authenticated attacker to execute...

SUSE SLED15 / SLES15 Security Update : samba (SUSE-SU-2020:1913-1)

This update for samba fixes the following issues : CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU bsc1173160. CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP packets bsc1173359...

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

Sharingan - Offensive Security Recon Tool

Sharingan is a recon multitool for offensive security / bug bounty This is very much a work in progress and I'm relatively new to offensive security in general so if you see something that can be improved please open an issue or PR with suggested changes. Cloning for development Outside of your...

MS15-022: Description of the security update for Excel Services in SharePoint Server 2013: March 10, 2015

Describes a security update that addresses vulnerabilities by correcting how SharePoint Server sanitizes specially crafted page content.INTRODUCTIONMicrosoft has released security bulletin MS15-022. To view the complete security bulletin, go to one of the following Microsoft websites: Home...

Drobo 5N2 4.1.1 - Remote Command Injection

Drobo 5N2 4.1.1 - Remote Command Injection Exploit Title: Drobo 5N2 4.1.1 - Remote Command Injection Date: 2020-03-12 Exploit Author: Rick Ramgattie, Ian Sindermann Vendor Homepage: https://www.drobo.com/ Version: 4.1.1 and lower. CVE: CVE-2018-14709, CVE-2018-14701 !/usr/bin/env python3 nasty.py...

Security Bulletin: A security vulnerability has been identified in OpenCV shipped with PowerAI

Summary Multiple Vulnerabilities CVE-2019-14493, CVE-2019-14492 and CVE-2019-14491 were found in OpenCV package. Vulnerability Details CVEID: CVE-2019-14493 DESCRIPTION: An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at...

United States government-funded phones come pre-installed with unremovable malware

UPDATE: January 10, 2020 At time of original publication, we were not yet able to replicate the malware Android./Trojan.HiddenAds being dropped on our test device, though multiple users had reported that a variant of HiddenAds suddenly installed on their UMX mobile phone. As of today, we are now...

Fedora Update for cobbler FEDORA-2019-502f1a2c67

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-5251

There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information...

Description of the security update for SharePoint Enterprise Server 2013: October 8, 2019

Description of the security update for SharePoint Enterprise Server 2013: October 8, 2019 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Excel software when the software fails to correctly handle objects in memory. To learn more about the...