Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2025/02/07 2:58 p.m.21 views

DeepSeek App Transmits Sensitive User and Device Data Without Encryption

A new audit of DeepSeek's mobile app for the Apple iOS operating system has found glaring security issues, the foremost being that it sends sensitive data over the internet sans any encryption, exposing it to interception and manipulation attacks. The assessment comes from NowSecure, which also...

7.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.5 views

The vulnerability of Dell PowerScale InsightIQ software for performance monitoring and reporting lies in its lack of protection against SQL query structures, allowing attackers to disclose sensitive information.

The vulnerability of the software for performance monitoring and report generation in Dell PowerScale InsightIQ is related to the lack of security measures in the SQL query structure. Exploiting this vulnerability can allow attackers to disclose sensitive information...

5.3CVSS5.5AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/31 12:0 a.m.6 views

The vulnerability of the Calendar component in the Zimbra Collaboration Suite corporate email management system allows a hacker to insert any desired malicious code into documents.

The vulnerability of the Calendar component in the Zimbra Collaboration Suite enterprise email management system exists due to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to insert arbitrary code into documents...

6.1CVSS7.2AI score0.3106EPSS
Exploits2References9
NVD
NVD
added 2021/05/17 1:15 p.m.18 views

CVE-2021-32403

Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery CSRF due to lack of security mechanisms for token protection and unsafe inputs and modules...

8.8CVSS0.02467EPSS
Exploits3References2
Prion
Prion
added 2021/05/17 1:15 p.m.20 views

Cross site request forgery (csrf)

Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery CSRF due to lack of security mechanisms for token protection and unsafe inputs and modules...

6.8CVSS8.8AI score0.02467EPSS
Exploits3References2Affected Software1
ThreatPost
ThreatPost
added 2014/02/11 12:48 p.m.6 views

Attacking ICS Systems 'Like Hacking in the 1980s'

PUNTA CANA–Here’s how nuts the world of ICS security is: Jonathan Pollet, a security consultant who specializes in ICS systems, was at a Texas amusement park recently and the ride he was waiting for was malfunctioning. The operator told him the ride used a Siemens PLC as part of the control syste...

7.2AI score
Exploits0
Rows per page
Query Builder