Two telnyx versions published containing credential harvesting malware

After an API token exposure from an exploited Trivy dependency,two new releases of telnyx were uploaded to PyPI containing automatically activated malware,harvesting sensitive credentials and files, and exfiltrating to a remote API.Compromised versions execute code during importing the telnyx...

ALPINE-CVE-2024-53566

An issue in the actionlistcategories function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0-rc2/22.0.0-pre1 allows attackers to execute a path traversal...

FreeBSD Security Vulnerabilities

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A security vulnerability exists in FreeBSD version 12.4-RELEASE up to and including version 12.4-RELEASE-p7, and version 13.2-RELEASE up to and including version 13.2-RELEASE-p5. An attacker can exploit the vulnerability...

Quagga BGP Backend Program UPDATE Message Released Twice Vulnerability

Quagga is an open source routing software. A two release vulnerability exists in the Quagga BGP backend program processing UPDATE messages, which allows remote attackers to exploit the vulnerability to submit a special request, conduct a denial of service attack or execute arbitrary code...