55 matches found
Boston Scientific Zoom Latitude Programmer/Recorder/Monitor Model 3120 数据伪造问题漏洞
The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is vulnerable to a data validation error that...
Security Bulletin: This Power Hardware Management Console (HMC) update is being released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091 (known as MDS).
Summary In response to recently reported security vulnerabilities, this Power HMC Security Bulletin is released to address Common Vulnerabilities and Exposures issue numbers CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091. Vulnerability Details CVEID: CVE-2018-12126 CVEID:...
Philips Vue PACS 安全漏洞
Philips Vue PACS is an image management solution from Philips Europe. A security vulnerability exists in Philips Vue PACS. The vulnerability allows an unauthorized person or process to eavesdrop, view or modify data, gain access to the system, execute code, install unauthorized software, or affec...
Philips Vue PACS 安全漏洞
Philips Vue PACS is an image management solution from Philips Europe. A security vulnerability exists in Philips Vue PACS. The vulnerability allows an unauthorized person or process to eavesdrop, view or modify data, gain access to the system, execute code, install unauthorized software, or affec...
CVE-2021-34396
Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service...
CVE-2021-34396
Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service...
Design/Logic Flaw
Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service...
CVE-2021-34396
CVE-2021-34396 affects NVIDIA bootloader (MB2) where a vulnerability in access permission settings could allow unauthorized software to overwrite MB2 code, potentially causing limited denial of service. The issue is rooted in bootloader access control, as described in multiple sources, and is ass...
CVE-2021-34396
Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service...
Researcher Demonstrates Several Zoom Vulnerabilities at DEF CON 28
Popular video conferencing app Zoom has addressed several security vulnerabilities, two of which affect its Linux client that could have allowed an attacker with access to a compromised system to read and exfiltrate Zoom user data—and even run stealthy malware as a sub-process of a trusted...
Just-Released Checkra1n iPhone Jailbreak Stirs Security Concerns
With the checkra1n iPhone jailbreak now available, security experts are urging mobile-device managers to keep on their toes as the powerful new tool becomes available to hackers and iPhone users who may recklessly use it. Jailbreaking is the process of hacking these devices to bypass DRM...
Flaw in Zoom Video Conferencing Software Lets Websites Hijack Mac Webcams
If you use Zoom video conferencing software on your Mac computer—then beware—any website you're visiting in your web browser can turn on your device camera without your permission. Ironically, even if you had ever installed the Zoom client on your device and simply uninstalled it, a remote attack...
The vulnerability of the microprogrammed logic controller Modicon Quantum, related to errors in code generation, allows a intruder to unauthorizedly modify the built-in software and cause malfunctions during maintenance.
The vulnerability of the microprogrammed programmable logic controller Modicon Quantum is related to errors in code generation. Exploiting this vulnerability allows an intruder to unauthorizedly modify the built-in software and cause malfunctions using the Modbus protocol...
Partner Perspectives: 3 Tips for Starting a Threat Hunting Program
Peter Silberman is the Director of Detection & Response, Innovation at Expel. Mary Singh is a Detection and Response Lead at Expel. So, you want to build a threat hunting program…but where do you start? There are lots of ways to build a threat hunting program for your own org and depending on you...
CVE-2019-1615
CVE-2019-1615 concerns Cisco NX-OS Software Image Signature Verification. Affected: Nexus 3000 Series switches; Nexus 9000 Series Fabric Switches in ACI Mode; Nexus 9000 Series in Standalone NX-OS Mode; Nexus 9500 R‑Series Line Cards and Fabric Modules. Root cause: improper verification of digita...
Security Bulletin: Official Statement On Spectre and Meltdown
Summary IBM Security statement on the Spectre and Meltdown vulnerabilities Vulnerability Details As many clients are likely aware of by now, 2 major security flaws impacting chipsets across the PC and mobile spectrums have unfolded over the last day or so. Meltdown Intel only and Spectre...
Unspecified vulnerability in Malwarebytes Anti-Malware consumer
Malwarebytes Anti-Malware consumer is a suite of anti-malware spyware from the American company Malwarebytes. The software supports the removal of worms, dial-up programs, Trojans, rootkits, spyware, exploits, bots, and other malware, among others. A security vulnerability exists in the encryptio...
CVE-2016-10717
A vulnerability in the encryption and permission implementation of Malwarebytes Anti-Malware consumer version 2.2.1 and prior fixed in 3.0.4 allows an attacker to take control of the whitelisting feature exclusions.dat under %SYSTEMDRIVE%\ProgramData to permit execution of unauthorized applicatio...
Implementing the CIS 20 Critical Security Controls: Slash Risk of Cyber Attacks by 85%
If a CISO needed to cut cyber attack risk by 85%, how would this security chief go about accomplishing that? Would the CISO even know where to begin? It’s safe to say that such a mandate would be considered daunting, and maybe even overwhelming. CISOs are scrambling to protect IT infrastructures...
Piriform CCleaner 5.33.6162 Backdoor
The version of Piriform CCleaner installed on the remote Windows host is equal to 5.33.6162. It is, therefore, affected by a malicious backdoor in CCleaner.exe that allows remote attackers to obtain sensitive information and install unauthorized software. C Tenable Network Security, Inc...