Cisco NX-OS Software 安全漏洞

Cisco NX-OS Software is a data center-level operating system software used by switches from the American company Cisco. There are security vulnerabilities in Cisco NX-OS Software. These vulnerabilities stem from the incorrect parsing of BGP attributes, which may allow unauthenticated remote...

RHEL 7 : firefox (RHSA-2026:8427)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:8427 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

CVE-2026-22040

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. In version 0.24.6, by generating a combined traffic pattern of high-frequency publishes and rapid reconnect/kick-out using the same ClientID and massive subscribe/unsubscribe jitter, it is possible to reliably trigger heap memory...

A Statistical Side-Channel Risk Model for Timing Variability in Lattice-Based Post-Quantum Cryptography

Timing side-channels are an important threat to cryptography that still needs to be addressed in implementations, and the advent of post-quantum cryptography raises this issue because the lattice-based schemes may produce secret-dependent timing variability with the help of complex arithmetic and...

Breaking Precision Time: OS Vulnerability Exploits against IEEE 1588

The Precision Time Protocol PTP, standardized as IEEE 1588, provides sub-microsecond synchronization across distributed systems and underpins critical infrastructure in telecommunications, finance, power systems, and industrial automation. While prior work has extensively analyzed PTP's...

EUVD-2025-24434

Malicious code in bioql PyPI...

Intel Clock Jitter Tool Elevation of Privilege Vulnerability

Intel Clock Jitter Tool is a clock jitter analysis tool developed by Intel based on mathematical physics methodology. Intel Clock Jitter Tool suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause an elevati...

CVE-2025-20092

Uncontrolled search path for some Clock Jitter Tool software before version 6.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-20092

Uncontrolled search path for some Clock Jitter Tool software before version 6.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-20092

Uncontrolled search path for some Clock Jitter Tool software before version 6.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-20092

CVE-2025-20092 affects Clock Jitter Tool software before version 6.0.1. The root cause is an uncontrolled search path that can be exploited by an authenticated user with local access to escalate privileges. Intel’s advisory (Intel‑SA‑01316) confirms the vulnerability and recommends updating to ve...

CVE-2025-20092

Uncontrolled search path for some Clock Jitter Tool software before version 6.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

Clock Jitter Tool Software Advisory

Summary: A potential security vulnerability for some Clock Jitter Tool software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20092 Description: Uncontrolled search path for some Clock Jitter...

PT-2025-32703 · Unknown · Clock Jitter Tool

Name of the Vulnerable Software and Affected Versions: Clock Jitter Tool versions prior to 6.0.1 Description: An uncontrolled search path issue exists in some Clock Jitter Tool software. This issue may allow an authenticated user to potentially escalate privileges via local access. Recommendation...

Intel Clock Jitter Tool 代码问题漏洞

Intel Clock Jitter Tool is a clock jitter analysis tool developed by Intel based on mathematical physics methodology. Intel Clock Jitter Tool suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause an elevati...

Autonomous 3D Moving Target Encirclement and Interception with Range Measurement

Commercial UAVs are an emerging security threat as they are capable of carrying hazardous payloads or disrupting air traffic. To counter UAVs, we introduce an autonomous 3D target encirclement and interception strategy. Unlike traditional ground-guided systems, this strategy employs autonomous...

New Detection Method Uses Hackers’ Own Jitter Patterns Against Them

A new detection method from Varonis Threat Labs turns hackers' sneaky random patterns into a way to catch hidden cyberattacks. Learn about Jitter-Trap and how it boosts cybersecurity defenses...

[SECURITY] Fedora 40 Update: libre-3.10.0-1.fc40

Libre is a generic library for real-time communications with async I/O support. Features are a SIP stack RFC 3261, SDP, RTP and RTCP, SRTP and SRTCP Secure RTP, DNS client, STUN/TURN/ICE stack, BFCP, HTTP stack with client/server, Websockets, Jitter buffer, async I/O poll, epoll, select, kqueue,...

RLSA-2023:4517 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in l2capconnect and l2capleconnectreq in net/bluetooth/l2capcore.c CVE-2022-42896 kernel: tcindex: use-after-free vulnerability in traffic control index filter allows...

Important: Red Hat Security Advisory: iperf3 security update

An update for iperf3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...