Seagate Media Sync Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Seagate Media Sync, a file synchronization tool, due to a failure in the Seagate Media Sync software to properly handle the transfer of data between its two processes via the named pipe MEDIAAGGREPIPE.PIP and the ability to create registry values...

Azure File Sync Agent v15.1 Release – September 2022

Azure File Sync Agent v15.1 Release – September 2022 This article describes the improvements and issues that are fixed in the Azure File Sync Agent v15.1 release that is dated September 2022. Additionally, this article contains installation instructions for this release. Improvements and issues...

Azure File Sync Agent v15.1 Release – September 2022 (KB5003883)

Update for Azure File Sync agent version 15.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v15.1 Release – September 2022 (KB5003883)

Update for Azure File Sync agent version 15.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v15.1 Release – September 2022 (KB5003883)

Update for Azure File Sync agent version 15.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v15.1 Release – September 2022 (KB5003883)

Update for Azure File Sync agent version 15.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

Apple puts the password on life support with passkey

The "passwordless future" is something many internet users--and a great majority of the cybersecurity industry--have hoped for. Now Apple is about to make those hopes a reality. With the release of iOS 16 yesterday, and macOS Ventura next month, Apple fans will be able to use passkeys, its passwo...

Reserves are not updated correctly

Lines of code Vulnerability details Impact Reserves are not updated on calling transfer function when dst is contract itself. This will lead to incorrect calculation of reserve0CumulativeLast and reserve1CumulativeLast which impacts the outcome prices returned by contract Proof of Concept 1. User...

OpenJDK: Multiple Vulnerabilities

Background OpenJDK is an open source implementation of the Java programming language. Description Multiple vulnerabilities have been discovered in OpenJDK. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround...

Agents are not reporting registering with WEM Broker; Cache sync failed with error: SyncFailed

Agents are not reporting registering with WEM Broker; Cache sync failed with error: SyncFailed WEM Agents are not reporting to the WEM Broker Infrastructure server; Red X appears next to Agent Hostname in WEM Console...

CVE-2022-36059

matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 19.4.0 events sent with special strings in key places can temporarily disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data...

TOTOLINK N350RT 操作系统命令注入漏洞

The TOTOLINK N350RT is a small home router from China's Gion Electronics TOTOLINK. An operating system command injection vulnerability exists in the TOTOLINK N350RT version V9.3.5u.6139B20201216, which stems from a command injection issue in the hosttime parameter of the NTPSyncWithHost method...

CVE-2022-31237

Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vulnerability in SyncIQ. A low privileged local attacker may potentially exploit this vulnerability, leading to limited information disclosure...

OPENSUSE-SU-2022:10087-1 Security update for opera

This update for opera fixes the following issues: opera was updated to 89.0.4447.71 - CHR-8957 Update chromium on desktop-stable-103-4447 to 103.0.5060.134 - DNA-100492 authPrivate.storeCredentials should work with running auth session - DNA-100649 “Sign out” from settings doesn’t also sign out...

Fedora: Security Advisory for owncloud-client (FEDORA-2022-d6faaa50eb)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: owncloud-client-2.10.1-1.fc35

Owncloud-client enables you to connect to your private ownCloud Server. With it you can create folders in your home directory, and keep the contents of those folders synced with your ownCloud server. Simply copy a file into the directory and the ownCloud Client does the rest...

[SECURITY] Fedora 36 Update: owncloud-client-2.10.1-1.fc36

Owncloud-client enables you to connect to your private ownCloud Server. With it you can create folders in your home directory, and keep the contents of those folders synced with your ownCloud server. Simply copy a file into the directory and the ownCloud Client does the rest...

Know Your ServiceNow and Qualys Integrations

If you are a current ServiceNow customer interested in cybersecurity, this blog is for you. If you are a Qualys customer who also uses ServiceNow, this blog is for you too. ServiceNow and Qualys have enjoyed a multi-year partnership, being two of the premier SaaS vendors covering the IT and...

PT-2022-14584 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-12L Description: The issue is related to a missing permission check in the startSync method of AbstractThreadedSyncAdapter.java, which could allow access to protected content of content providers...

ai.onehouse:lakeview-sync-tool (>=0.18.5 <=0.28.0), com.4paradigm.openmldb:openmldb-taskmanager (>=0.4.2 <=0.6.2) +398 more potentially affected by CVE-2022-25168 via org.apache.hadoop:hadoop-common (>=2.0.4-alpha <=2.10.1)

org.apache.hadoop:hadoop-common MAVEN version =2.0.4-alpha, =0.18.5, =0.4.2, =2.0.29.2, =0.3.0, =0.3.0, =2.10.6.9, =3.0.0, =3.0.0, =0.24.0, =0.24.0, =0.24.0, =0.24.0, =0.19.3, =0.19.3, =0.26.0 and more Source cves: CVE-2022-25168 Source advisory: OSV:GHSA-8WM5-8H9C-47PC...