CVE-2021-37850

ESET was made aware of a vulnerability in its consumer and business products for macOS that enables a user logged on to the system to stop the ESET daemon, effectively disabling the protection of the ESET security product until a system reboot...

CVE-2024-6654

CVE-2024-6654 affects ESET Products for macOS. The vulnerability stems from incorrect handling of symbolic links before file access in the macOS components, enabling a locally authenticated user to trigger a denial-of-service condition that could disable ESET protection and slow the system. Affec...

CVE-2024-3779

Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render ESET’s security product inoperable, provided non-default preconditions were met...

CVE-2024-3779

Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render ESET’s security product inoperable, provided non-default preconditions were met...

IBM Security QRadar 安全漏洞

IBM Security QRadar is a modernized threat detection and response solution from International Business Machines IBM, Inc. designed to unify and integrate the security analyst experience and improve their response speed throughout the incident lifecycle. IBM Security QRadar suffers from an HTML...

The Magic of Branding: ​Creating an Optimistic Identity for a Security Product

In the world of security, the dominant approach to branding is often based on fear and intimidation. But at Wiz, we're taking a different approach. We believe in the power of optimism and positivity, and we're building a brand that reflects those values...

CVE-2023-2847

During internal security analysis, a local privilege escalation vulnerability has been identified. On a machine with the affected ESET product installed, it was possible for a user with lower privileges due to improper privilege management to trigger actions with root privileges. ESET remedied th...

CVE-2022-22307

IBM Security Guardium 11.3, 11.4, and 11.5 could allow a local user to obtain elevated privileges due to incorrect authorization checks. IBM X-Force ID: 216753...

An arbitrary file reading vulnerability exists in SANGFOR Internet Optimization Management System of Deep Impact Technology Co.

SANGFOR Internet optimization management system is a security product that integrates Internet behavior management, network access, device access and business access behavior analysis. Core advantages: multiple authentication methods, comprehensive audit capability, support for multiple applicati...

Fidelis Network Deception has an unspecified vulnerability (CNVD-2022-59168)

Fidelis Network Deception is a security product from Fidelis USA, Inc. It is used to detect threats and prevent data loss, with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats.A security vulnerability exists in version...

Fidelis Network Deception has an unspecified vulnerability (CNVD-2022-59167)

Fidelis Network Deception is a security product from Fidelis USA, Inc. It is used to detect threats and prevent data loss, with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats.A security vulnerability exists in version...

Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59169)

Fidelis Network Deception is a security product from Fidelis USA, Inc. A security vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from the CommandPost cplp parameter when using the checkverticaupgrade value. Command injection exists, and an attacker can use...

Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59171)

Fidelis Network Deception is a security product from Fidelis USA. A security vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from a faulty remotetextfile in rconfig, to detect threats and prevent data loss, detect malicious behavior, identify traffic...

Fidelis Network Deception SQL Injection Vulnerability

Fidelis Network Deception is a security product from Fidelis USA. It is used to detect threats and prevent data loss with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats. A SQL injection vulnerability exists in Fidelis...

Fidelis Network Deception Command Injection Vulnerability

Fidelis Network Deception is a security product from Fidelis USA. It is used to detect threats and prevent data loss with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats. A command injection vulnerability exists in...

Harmony Browse 代码问题漏洞

Check Point Harmony Browse is a modern Web security solution from Check Point, Inc. It is designed to provide the strongest protection against Web-based attacks. Harmony Browse has a security vulnerability that originates from an improperly designed or implemented code development process for a...

IBM QRadar 加密问题漏洞

IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. A security...

Unauthorized Access Vulnerability in CDF Computer Terminal Confidential Inspection System

ZF Computer Terminal Confidentiality Inspection System is a security product for grassroots confidential cadres and classified personnel at all levels to carry out security and confidentiality inspections and self routine inspections, which provides a powerful technical means for the...

Logic flaw vulnerability in 360 Isolation Sandbox (CNVD-2021-52377)

360 Isolation Sandbox is a security product developed by 360 Security Center and built into the feature book with 360 Security Guard. Quickly establish an isolation environment, lightweight and convenient. Combination of automatic identification and manual mode. 360 Isolation Sandbox has a logic...

Fidelis Network Deception SQL Injection Vulnerability

Fidelis Network Deception is a security product from Fidelis USA. It is used to detect threats and prevent data loss with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats. Fidelis Network suffers from a SQL injection...