Lucene search
K

243 matches found

OSV
OSV
added 2024/03/06 10:53 a.m.15 views

BIT-JUPYTERHUB-2021-41247 incomplete logout in JupyterHub

JupyterHub is an open source multi-user server for Jupyter notebooks. In affected versions users who have multiple JupyterLab tabs open in the same browser session, may see incomplete logout from the single-user server, as fresh credentials for the single-user server only, not the Hub reinstated...

7.5CVSS7.5AI score0.00778EPSS
Exploits0References3
Rapid7 Blog
Rapid7 Blog
added 2023/12/29 3:52 p.m.7 views

Velociraptor 0.7.1 Release

Written by Dr. Michael Cohen Sigma Support, ETW Multiplexing, Local Encrypted Storage and New VQL Capabilities Highlight the Last Release of 2023 Rapid7 is excited to announce that version 0.7.1 of Velociraptor is live and available for download. There are several new features and capabilities th...

6AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/12/29 3:52 p.m.18 views

Velociraptor 0.7.1 Release

Written by Dr. Michael Cohen Sigma Support, ETW Multiplexing, Local Encrypted Storage and New VQL Capabilities Highlight the Last Release of 2023 Rapid7 is excited to announce that version 0.7.1 of Velociraptor is live and available for download. There are several new features and capabilities th...

6.5AI score
Exploits0
Veeam
Veeam
added 2023/12/20 12:0 a.m.115 views

OneDrive backup job fails with "Download request retry timeout exceeded"

Challenge During a OneDrive backup, the following error may occur while downloading a OneNote file .one: Failed to backup item: %path%, Download request retry timeout exceeded. This error will only be displayed when using one of the following versions of Veeam Backup for Microsoft 365: v7 P202312...

6.3AI score
Exploits0Affected Software2
Openbugbounty
Openbugbounty
added 2023/11/10 10:26 p.m.11 views

notebooks-miete.de Improper Access Control vulnerability OBB-3776937

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
HackRead
HackRead
added 2023/10/18 7:5 p.m.14 views

Qubitstrike Malware Hits Jupyter Notebooks for Cryptojacking and Cloud Data

By Deeba Ahmed Qubitstrike Malware Uses Discord for C2 Communications in Cryptojacking Campaign Targeting Jupyter Notebooks. This is a post from HackRead.com Read the original post: Qubitstrike Malware Hits Jupyter Notebooks for Cryptojacking and Cloud Data...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/18 11:42 a.m.28 views

Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign

A threat actor, presumably from Tunisia, has been linked to a new campaign targeting exposed Jupyter Notebooks in a two-fold attempt to illicitly mine cryptocurrency and breach cloud environments. Dubbed Qubitstrike by Cado, the intrusion set utilizes Telegram API to exfiltrate cloud service...

7.4AI score
Exploits0
OSV
OSV
added 2023/10/09 7:15 p.m.1 views

CVE-2022-3431

A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo Notebook devices that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable...

7.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/09/15 9:15 p.m.2 views

CVE-2023-0923

A flaw was found in the Kubernetes service for notebooks in RHODS, where it does not prevent pods from other namespaces and applications from making requests to the Jupyter API. This flaw can lead to file content exposure and other issues...

9.8CVSS5.8AI score0.00937EPSS
Exploits0References4
CVE
CVE
added 2023/09/15 8:16 p.m.103 views

CVE-2023-0923

CVE-2023-0923 affects Red Hat OpenShift Data Science (RHODS) with the odh-notebook-controller-container vulnerability: insufficient authorization allows requests from other namespaces to reach the Jupyter API, exposing file contents and related data. Connected sources corroborate impact and root ...

9.8CVSS9.1AI score0.00937EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/08/23 8:15 p.m.13 views

CVE-2022-3744

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to unlock UEFI variables due to a hard-coded SMI handler credential...

6.7CVSS6.3AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 8:15 p.m.6 views

CVE-2022-3743

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges under certain conditions the ability to enumerate Embedded Controller EC commands...

4.4CVSS5.8AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 8:15 p.m.4 views

CVE-2022-3746

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller EC interface...

6.7CVSS5.8AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2023/08/23 8:15 p.m.34 views

CVE-2022-3746

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller EC interface...

6.7CVSS6.3AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2023/08/23 8:15 p.m.23 views

CVE-2022-3742

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation...

6.7CVSS6.8AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 8:15 p.m.5 views

CVE-2022-3745

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to view incoming and returned data from SMI...

4.4CVSS5.8AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 8:15 p.m.3 views

CVE-2022-3742

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation...

6.7CVSS6.3AI score0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/23 7:43 p.m.36 views

CVE-2022-3746

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller EC interface...

6.7CVSS6.6AI score0.0017EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/23 7:43 p.m.19 views

CVE-2022-3745

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to view incoming and returned data from SMI...

4.4CVSS6.6AI score0.00175EPSS
Exploits0References1
CVE
CVE
added 2023/08/23 7:43 p.m.60 views

CVE-2022-3745

CVE-2022-3745 affects LCFC BIOS on Lenovo consumer notebooks; a local attacker with elevated privileges could view data from SMI. Documents provide the affected software (LCFC BIOS) and impact (information disclosure) but do not specify root cause details or a fix. Remediation not described in th...

4.4CVSS4.6AI score0.00175EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder