βΌ CVE-2020-29017 βΌ
π Read
via "National Vulnerability Database".
An OS command injection vulnerability in FortiDeceptor 3.1.0, 3.0.1, 3.0.0 may allow a remote authenticated attacker to execute arbitrary commands on the system by exploiting a command injection vulnerability on the Customization page.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23926 βΌ
π Read
via "National Vulnerability Database".
The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion attacks. Affects XMLBeans up to and including v2.6.0.π Read
via "National Vulnerability Database".
βΌ CVE-2021-24122 βΌ
π Read
via "National Vulnerability Database".
When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of the JRE API File.getCanonicalPath() which in turn was caused by the inconsistent behaviour of the Windows API (FindFirstFileW) in some circumstances.π Read
via "National Vulnerability Database".
βΌ CVE-2020-27368 βΌ
π Read
via "National Vulnerability Database".
Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /icons/ directories via GET Parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2020-6777 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the web-based management interface of Bosch PRAESIDEO until and including version 4.41 and Bosch PRAESENSA until and including version 1.10 allows an authenticated remote attacker with admin privileges to mount a stored Cross-Site-Scripting (XSS) attack against another user. When the victim logs into the management interface, the stored script code is executed in the context of his browser. A successful exploit would allow an attacker to interact with the management interface with the privileges of the victim. However, as the attacker already needs admin privileges, there is no additional impact on the management interface itself.π Read
via "National Vulnerability Database".
βΌ CVE-2020-26733 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) in Configuration page in SKYWORTH GN542VF Hardware Version 2.0 and Software Version 2.0.0.16 allows authenticated attacker to inject their own script into the page via DDNS Configuration Section.π Read
via "National Vulnerability Database".
βΌ CVE-2020-29016 βΌ
π Read
via "National Vulnerability Database".
A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.5 and version before 6.2.4 may allow an unauthenticated, remote attacker to overwrite the content of the stack and potentially execute arbitrary code by sending a crafted request with a large certname.π Read
via "National Vulnerability Database".
βΌ CVE-2020-26732 βΌ
π Read
via "National Vulnerability Database".
Skyworth GN542VF Boa version 0.94.13 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session.π Read
via "National Vulnerability Database".
π¦Ώ US government warns of cyberattacks targeting cloud services π¦Ώ
π Read
via "Tech Republic".
Such attacks often occur when employees work remotely and use a mixture of personal and business devices to access cloud services.π Read
via "Tech Republic".
TechRepublic
US government warns of cyberattacks targeting cloud services
Such attacks often occur when employees work remotely and use a mixture of personal and business devices to access cloud services.
π¦Ώ CES 2021: All of the business tech news you need to know π¦Ώ
π Read
via "Tech Republic".
Don't miss TechRepublic's CES 2021 coverage, which includes product announcements from Lenovo, Samsung, LG, and Dell about PCs, laptops, software, robots, monitors, and TVs.π Read
via "Tech Republic".
TechRepublic
CES 2021: All of the business tech news you need to know
Don't miss TechRepublic's CES 2021 coverage, which includes product announcements from Lenovo, Samsung, LG, and Dell about PCs, laptops, software, robots, monitors, and TVs.
π Hackers Leak Stolen COVID-19 Vaccine Data Online π
π Read
via "Digital Guardian".
The breach has not affected the efficacy or approval of the vaccine in Europe.π Read
via "Digital Guardian".
Digital Guardian
Hackers Leak Stolen COVID-19 Vaccine Data Online
The breach has not affected the efficacy or approval of the vaccine in Europe.
β Florida Ethics Officer Charged with Cyberstalking β
π Read
via "Threat Post".
Judge bars former Tallahassee city ethics officer from internet-connected devices after her arrest for cyberstalking.π Read
via "Threat Post".
Threat Post
Florida Ethics Officer Charged with Cyberstalking
Judge bars former Tallahassee city ethics officer from internet-connected devices after her arrest for cyberstalking.
π΄ NSA Recommends Using Only 'Designated' DNS Resolvers π΄
π Read
via "Dark Reading".
Agency provides guidelines on securely deploying DNS over HTTPS, aka DoH.π Read
via "Dark Reading".
Dark Reading
NSA Recommends Using Only 'Designated' DNS Resolvers
Agency provides guidelines on securely deploying DNS over HTTPS, aka DoH.
βΌ CVE-2021-22132 βΌ
π Read
via "National Vulnerability Database".
Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive request headers of other users in the cluster. This issue is fixed in Elasticsearch 7.10.2π Read
via "National Vulnerability Database".
βΌ CVE-2021-21261 βΌ
π Read
via "National Vulnerability Database".
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. A bug was discovered in the `flatpak-portal` service that can allow sandboxed applications to execute arbitrary code on the host system (a sandbox escape). This sandbox-escape bug is present in versions from 0.11.4 and before fixed versions 1.8.5 and 1.9.4. The Flatpak portal D-Bus service (`flatpak-portal`, also known by its D-Bus service name `org.freedesktop.portal.Flatpak`) allows apps in a Flatpak sandbox to launch their own subprocesses in a new sandbox instance, either with the same security settings as the caller or with more restrictive security settings. For example, this is used in Flatpak-packaged web browsers such as Chromium to launch subprocesses that will process untrusted web content, and give those subprocesses a more restrictive sandbox than the browser itself. In vulnerable versions, the Flatpak portal service passes caller-specified environment variables to non-sandboxed processes on the host system, and in particular to the `flatpak run` command that is used to launch the new sandbox instance. A malicious or compromised Flatpak app could set environment variables that are trusted by the `flatpak run` command, and use them to execute arbitrary code that is not in a sandbox. As a workaround, this vulnerability can be mitigated by preventing the `flatpak-portal` service from starting, but that mitigation will prevent many Flatpak apps from working correctly. This is fixed in versions 1.8.5 and 1.9.4.π Read
via "National Vulnerability Database".
β Facebook: Malicious Chrome Extension Developers Scraped Profile Data β
π Read
via "Threat Post".
Facebook has sued two Chrome devs for scraping user profile data - including names, user IDs and more.π Read
via "Threat Post".
Threat Post
Facebook: Malicious Chrome Extension Developers Scraped Profile Data
Facebook has sued two Chrome devs for scraping user profile data - including names, user IDs and more.
π΄ Businesses Struggle with Cloud Availability as Attackers Take Aim π΄
π Read
via "Dark Reading".
Researchers find organizations struggle with availability for cloud applications as government officials warn of cloud-focused cyberattacks.π Read
via "Dark Reading".
Dark Reading
Businesses Struggle with Cloud Availability as Attackers Take Aim
Researchers find organizations struggle with availability for cloud applications as government officials warn of cloud-focused cyberattacks.
β Europol announces bust of βworldβs biggestβ dark web marketplace β
π Read
via "Naked Security".
Dark web servers are hard to find - but not impossible.π Read
via "Naked Security".
Naked Security
Europol announces bust of βworldβs biggestβ dark web marketplace
Dark web servers are hard to find β but not impossible.
π΄ 'Chimera' Threat Group Abuses Microsoft & Google Cloud Services π΄
π Read
via "Dark Reading".
Researchers detail a new threat group targeting cloud services to achieve goals aligning with Chinese interests.π Read
via "Dark Reading".
Darkreading
'Chimera' Threat Group Abuses Microsoft & Google Cloud Services
Researchers detail a new threat group targeting cloud services to achieve goals aligning with Chinese interests.
π¦Ώ CES 2021: All of the business tech news you need to know π¦Ώ
π Read
via "Tech Republic".
Don't miss TechRepublic's CES 2021 coverage, which includes product announcements from Lenovo, Samsung, LG, and Dell about PCs, laptops, software, robots, monitors, and TVs.π Read
via "Tech Republic".
TechRepublic
CES 2021: All of the business tech news you need to know
Don't miss TechRepublic's CES 2021 coverage, which includes product announcements from Lenovo, Samsung, LG, and Dell about PCs, laptops, software, robots, monitors, and TVs.
π¦Ώ How to install Eternal Terminal for persistent SSH connections π¦Ώ
π Read
via "Tech Republic".
If you have trouble with SSH connections breaking, Jack Wallen shows you how you can enjoy a bit more persistence with the help of Eternal Terminal.π Read
via "Tech Republic".
TechRepublic
How to install Eternal Terminal for persistent SSH connections
If you have trouble with SSH connections breaking, Jack Wallen shows you how you can enjoy a bit more persistence with the help of Eternal Terminal.