free5GC 安全特征问题漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.2 contained security feature vulnerabilities. These vulnerabilities stemmed from AMF not implementing the concurrent security procedures defined in 3GPP TS 33.501, which could lead to...

EUVD-2020-17164

Malware in sbrugna...

EUVD-2019-8092

Malware in sbrugna...

EUVD-2018-14921

Malware in sbrugna...

EUVD-2024-43245

Malicious code in bioql PyPI...

Microsoft Entra Suite delivers 131% ROI by unifying identity and network access

In today’s AI-first world, identity and network access are the first touchpoints for enforcing least privilege and protecting against sophisticated, identity-based attacks—but for many organizations, that defense is fragmented. Siloed teams and disconnected tools create security gaps, operational...

CVE-2025-50106

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1;...

CVE-2025-0125

CVE-2025-0125 affects Palo Alto Networks PAN-OS via the management web interface, where an improper input neutralization vulnerability allows a malicious authenticated read-write administrator to impersonate another legitimate PAN-OS administrator. The issue requires network access to the managem...

Siemens SINEC NMS

SUMMARY SINEC NMS before V3.0 SP1 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC NMS and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general security measure, Siemens strongly recommends to protect network access to devices...

CISA and Partners Release Guidance for Modern Approaches to Network Access Security

Today, CISA, in partnership with the Federal Bureau of Investigation FBI, released guidance, Modern Approaches to Network Access Security, along with the following organizations: New Zealand’s Government Communications Security Bureau GCSB; New Zealand’s Computer Emergency Response Team CERT-NZ;...

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Ziguang Zhanrui UNISOC. A security vulnerability exists in the UNISOC Chipsets modem module, which stems from a lack of validation in LTE for NAS secure mode command replay attacks...

Fortinet FortiNAC 安全漏洞

Fortinet FortiNAC is a set of network access control solutions from the U.S. company Fita Fortinet. The product is primarily used for network access control and IoT security. A security vulnerability exists in Fortinet FortiNAC that stems from improper privilege management...

CVE-2022-30573

The CVE-2022-30573 issue affects the ftlserver component of TIBCO FTL across Community (6.0.0–6.8.0), Developer (6.0.1–6.8.0), and Enterprise Editions (6.0.0–6.7.3 and 6.8.0). The vulnerability enables a low-privileged, network-access attacker to escalate privileges on the ftlserver, potentially ...