250 matches found
CVE-2024-40822
This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. An attacker with physical access to a device may be able to access contacts from the lock screen...
CVE-2024-40824
This issue was addressed through improved state management. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to bypass Privacy preferences...
PT-2024-22090 · Apple · Macos Sonoma +6
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.6 iPadOS versions prior to 17.6 watchOS versions prior to 10.6 tvOS versions prior to 17.6 visionOS versions prior to 1.3 macOS Sonoma versions prior to 14.6 Description: An information disclosure issue was addressed...
EUVD-2024-25008
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 17.5, visionOS 1.2, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges...
Vulnerabilities fixed in Juniper JunOS
Juniper has fixed vulnerabilities in JunOS and JunOS Evolved. A malicious party could exploit the vulnerabilities to cause a denial-of-service, gain access to sensitive data or to bypass security measures to allow traffic pass through traffic that was not initially authorized. Juniper has release...
KLA65506 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender for IoT can be exploited...
CVE-2024-0313
A malicious insider exploiting this vulnerability can circumvent existing security controls put in place by the organization. On the contrary, if the victim is legitimately using the temporary bypass to reach out to the Internet for retrieving application and system updates, a remote device could...
CVE-2024-23283
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to access user-sensitive data...
Vulnerabilities fixed in Apple iOS and iPadOS
Apple has fixed vulnerabilities in iOS and iPadOS. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Manipulation of data; Circumvention of security measure; Accessing sensitive data. For successful exploitatio...
Announcing the Newest Game-Changing Upgrades of Qualys Cloud Agent
Qualys Cloud Agent Gets Powerful Enhancements for Boosting User Flexibility, Improved Control & Efficiency in VDI Environments, Seamless Updates, and More! We are excited to unveil a major upgrade to the Qualys Cloud Agent, marking a significant stride in cybersecurity management. The four update...
UBUNTU-CVE-2022-32919
The issue was addressed with improved UI handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Visiting a website that frames malicious content may lead to UI spoofing...
Security Bulletin: IBM Security Guardium is affected by a CSV Injection vulnerability (CVE-2023-42004)
Summary IBM Security Guardium has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2023-42004 DESCRIPTION: IBM Security Guardium is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands due to improper validation of csv file contents...
PT-2023-7962 · Apple · Macos Monterey +6
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.2 iOS versions prior to 17.2 iPadOS versions prior to 17.2 watchOS versions prior to 10.2 tvOS versions prior to 17.2 macOS Ventura versions prior to 13.6.3 macOS Monterey versions prior to 12.7.2 iOS versions prior...
[SECURITY] [DLA 3661-1] firefox-esr security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3661-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort November 23, 2023 https://wiki.debian.org/LTS -...
[SECURITY] [DLA 3599-1] exim4 security update
Debian LTS Advisory DLA-3599-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 02, 2023 https://wiki.debian.org/LTS Package : exim4 Version : 4.92-8+deb10u8 CVE ID : CVE-2023-42114 CVE-2023-42116 Several vulnerabilities were discovered in Exim, a mail...
CVE-2023-35990
The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may be able to identify what other apps a user has installed...
KaliPackergeManager - Kali Packerge Manager
kalipm.sh is a powerful package management tool for Kali Linux that provides a user-friendly menu-based interface to simplify the installation of various packages and tools. It streamlines the process of managing software and enables users to effortlessly install packages from different categorie...
DreamBus Botnet Exploiting A Critical Vulnerability in Apache RocketMQ
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A critical vulnerability CVE-2023-33246 in Apache RocketMQ servers enables remote code execution, leading to a surge in attacks, including the deployment of the DreamBus malware. Timely system...
Storefront - Unable to access store URL: "Server Error in '/Citrix/#storename#Web' Application"
Security related patches for IE browser and OS were deployed and since then users cannot launch the Storefront page. The following is displayed: Server Error in '/Citrix/storenameWeb' Application...
Android Security Bulletin—August 2023Stay organized with collectionsSave and categorize content based on your preferences.
The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2023-08-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...