EUVD-2018-13577

Malware in sbrugna...

EUVD-2018-9055

Malware in sbrugna...

CVE-2018-21058

An issue was discovered on Samsung mobile devices with N7.0, O8.0 exynos7420 or Exynos 8890/8996 chipsets software. Cache attacks can occur against the Keymaster AES-GCM implementation because T-Tables are used; the Cryptography Extension CE is not used. The Samsung ID is SVE-2018-12761 September...

CVE-2018-21059

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. There is Clipboard content visibility in the locked state via the emergency contact picker. The Samsung ID is SVE-2018-11806 September 2018...

Integer overflow

An issue was discovered on Samsung mobile devices with M6.0, N7.x and O8.x except exynos9610/9820 in all Platforms, M6.0 except MSM8909 SC77xx/9830 exynos3470/5420, N7.0 except MSM8939, N7.1 except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. There is a Keyboard learned words leak in the locked state via the emergency contact picker. The Samsung IDs are SVE-2018-11989, SVE-2018-11990 September 2018...

CVE-2018-21057

An issue was discovered on Samsung mobile devices with N7.x O8.x, and P9.0 Exynos chipsets software. There is a stack-based buffer overflow in the Shannon Baseband. The Samsung ID is SVE-2018-12757 September 2018...

CVE-2018-21059

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. There is Clipboard content visibility in the locked state via the emergency contact picker. The Samsung ID is SVE-2018-11806 September 2018...

CVE-2018-21060

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. There is a Keyboard learned words leak in the locked state via the emergency contact picker. The Samsung IDs are SVE-2018-11989, SVE-2018-11990 September 2018...

September 2018 Preview of the Quality Rollups for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2, and 4.6 for Windows Server 2008 SP2 (KB 4458614)

September 2018 Preview of the Quality Rollups for .NET Framework 2.0 SP2, 3.0 SP2, 4.5.2, and 4.6 for Windows Server 2008 SP2 KB 4458614 Notice This update is included in the Security and Quality Rollup that's dated October 9, 2018. This update was previously released as part of the Preview of...

September 2018 Preview of the Quality Rollups for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows Server 2012 (KB 4458612)

September 2018 Preview of the Quality Rollups for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows Server 2012 KB 4458612 This also applies to: Microsoft .NET Framework 3.5 Notice This update is included in the Security and Quality Rollup that's dated October 9, 201...

budgetplant.de XSS vulnerability

Open Bug Bounty ID: OBB-680680 Description| Value ---|--- Affected Website:| budgetplant.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-17391

creationtimestamp| type| source ---|---|--- 2018-09-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45463 2018-09-25 17:05:32+00:00| seen| https://t.me/VulnerabilityNews/1866...

dt-shop.com XSS vulnerability

Open Bug Bounty ID: OBB-679205 Description| Value ---|--- Affected Website:| dt-shop.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Western Digital My Cloud Authentication Bypass

------------------------------------------------------------------------ Authentication bypass vulnerability in Western Digital My Cloud allows escalation to admin privileges ------------------------------------------------------------------------ Remco Vermeulen, September 2018...

CVE-2018-8384

creationtimestamp| type| source ---|---|--- 2018-09-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45431...

blueskybio.com XSS vulnerability

Open Bug Bounty ID: OBB-677474 Description| Value ---|--- Affected Website:| blueskybio.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-7738

creationtimestamp| type| source ---|---|--- 2018-09-14 19:42:38+00:00| published-proof-of-concept| https://t.me/canyoupwnme/4393 2018-09-16 17:18:36+00:00| published-proof-of-concept| https://t.me/itsecalert/116...

(RHSA-2018:2684) Low: .NET Core Runtime 2.1.4 and SDK 2.1.402 for Red Hat Enterprise Linux

.NET Core is a managed software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. A new version of .NET Core that addresses several security vulnerabilities is now available. The updated version of the runtime is 2.1.4. The...

Microsoft Issues Software Updates for 17 Critical Vulnerabilities

Times to gear up your systems and software. Just a few minutes ago Microsoft released its latest monthly Patch Tuesday update for September 2018, patching a total of 61 security vulnerabilities, 17 of which are rated as critical, 43 are rated Important, and one Moderate in severity. This month's...