TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 banking, fintech, and cryptocurrency platforms. The activity is being tracked by Elastic Security Labs under the moniker REF3076. The malware family is assessed to be a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002421)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002421 advisory. Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute...

CVE-2024-2537

Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on MacOS allows Local Code Inclusion...

EUVD-2024-27486

Malicious code in bioql PyPI...

07FLY CRM 跨站脚本漏洞

07FLY CRM is an OA office system of China Zero Takeoff 07FLY. A cross-site scripting vulnerability exists in 07FLY CRM version 1.3.8, which originates from the parameter Logi of the component System Settings Page that causes cross-site scripting...

UBUNTU-CVE-2024-40934

In the Linux kernel, the following vulnerability has been resolved: HID: logitech-dj: Fix memory leak in logidjrecvswitchtodjmode Fix a memory leak on logidjrecvsendreport error path...

CVE-2024-2537 Electron Code Injection in Logi Tune macOS Application

Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on MacOS allows Local Code Inclusion...

CVE-2024-2537 Electron Code Injection in Logi Tune macOS Application

Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on MacOS allows Local Code Inclusion...

CVE-2024-2537

CVE-2024-2537 describes an "Improper Control of Dynamically-Managed Code Resources" vulnerability in Logitech Logi Tune for macOS, enabling potential Local Code Inclusion. The issue is associated with the macOS Logi Tune Electron-based flow (as reflected in multiple feeds naming Electron Code Inj...

PT-2024-20905 · Logitech · Logitech Logi Tune

Name of the Vulnerable Software and Affected Versions: Logitech Logi Tune affected versions not specified Description: The issue is related to an Improper Control of Dynamically-Managed Code Resources vulnerability, which allows Local Code Inclusion. This vulnerability affects Logitech Logi Tune ...

Logitech Logi Tune Security Vulnerability

Logitech Logi Tune is a free desktop application from Logitech Switzerland. It allows users to calibrate headphones or Logi Dock audio. A security vulnerability exists in Logitech Logi Tune that stems from improper control of dynamically managed code resources...

SUSE CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

Malicious code in logi-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b6ddc969c3ee3a92a778090198117b0c40386a5c6268f77e3a5c26869905989 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4379 Malicious code in logi-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b6ddc969c3ee3a92a778090198117b0c40386a5c6268f77e3a5c26869905989 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Calavera UpLoader 3.5 - (FTP Logi) Denial of Service (PoC + SEH Overwrite) Exploit

Exploit Title: Calavera UpLoader 3.5 - 'FTP Logi' Denial of Service PoC + SEH Overwrite Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/463c9e7fe9a39888d3c01bc9ad756bba-UpSetup.exe Version: 3.5 Tested on: Windows 7 x86 Blog: https://whitecr0wz.github.io/ Sadly enough, this...

Calavera UpLoader 3.5 - 'FTP Logi' Denial of Service (PoC + SEH Overwrite)

Exploit Title: Calavera UpLoader 3.5 - 'FTP Logi' Denial of Service PoC + SEH Overwrite Date: 2020-07-20 Author: Felipe Winsnes Software Link: https://www.exploit-db.com/apps/463c9e7fe9a39888d3c01bc9ad756bba-UpSetup.exe Version: 3.5 Tested on: Windows 7 x86 Blog: https://whitecr0wz.github.io/ Sad...

IBM WebSphere Application Server Spoofing Attack Vulnerability

IBM WebSphere Application Server WAS is an application server product developed and distributed by IBM in the U.S. It is a platform for Java EE and Web services applications, and is the foundation of the IBM WebSphere software platform. A security vulnerability exists in IBM WAS versions 7.0, 8.0...

CVE-2007-1613

Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the logi parameter...

Directory traversal

Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the logi parameter...

MPM Chat 2.5 (view.php logi) Local File Include Vulnerability

No description provided by source. MPM Chat 2.5 view.php logi Local File Include Exploit D.Script: http://mpm.pahviloota.net/mpmchat25.zip Discovered by: GloDM = Mahmoodali Homepage: http://www.Tryag.cc Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group V.Code ?php if $logi != '' include...