βΌ CVE-2021-21725 βΌ
π Read
via "National Vulnerability Database".
A ZTE product has an information leak vulnerability. An attacker with higher authority can go beyond their authority to access files in other directories by performing specific operations, resulting in information leak. This affects: ZXHN H196Q V9.1.0C2.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26971 βΌ
π Read
via "National Vulnerability Database".
A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Vulnerabilities in the AirWave web-base management interface could allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as a lower privileged user on the underlying operating system leading to partial system compromise.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26970 βΌ
π Read
via "National Vulnerability Database".
A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Vulnerabilities in the AirWave web-base management interface could allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as a lower privileged user on the underlying operating system leading to partial system compromise.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28050 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine Desktop Central before build 10.0.647 allows a single authentication secret from multiple agents to communicate with the server.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26963 βΌ
π Read
via "National Vulnerability Database".
A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Vulnerabilities in the AirWave CLI could allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to full system compromise.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26965 βΌ
π Read
via "National Vulnerability Database".
A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Multiple vulnerabilities in the API of AirWave could allow an authenticated remote attacker to conduct SQL injection attacks against the AirWave instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information in the underlying database.π Read
via "National Vulnerability Database".
βΌ CVE-2020-35594 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine ADManager Plus before 7066 allows XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26968 βΌ
π Read
via "National Vulnerability Database".
A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. A vulnerability in the web-based management interface of AirWave could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victimΓ’β¬β’s browser in the context of the affected interface.π Read
via "National Vulnerability Database".
βΌ CVE-2021-26967 βΌ
π Read
via "National Vulnerability Database".
A remote reflected cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. A vulnerability in the web-based management interface of AirWave could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of certain components of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victimΓ’β¬β’s browser in the context of the AirWave management interface.π Read
via "National Vulnerability Database".
βΌ CVE-2021-28039 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less-common configurations, an x86 PV guest OS user can crash a Dom0 or driver domain via a large amount of I/O activity. The issue relates to misuse of guest physical addresses when a configuration has CONFIG_XEN_UNPOPULATED_ALLOC but not CONFIG_XEN_BALLOON_MEMORY_HOTPLUG.π Read
via "National Vulnerability Database".
βΌ CVE-2020-28502 βΌ
π Read
via "National Vulnerability Database".
This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into xhr.send could result in arbitrary code being injected and run.π Read
via "National Vulnerability Database".
βΌ CVE-2020-29032 βΌ
π Read
via "National Vulnerability Database".
Upload of Code Without Integrity Check vulnerability in firmware archive of Secomea GateManager allows authenticated attacker to execute malicious code on server. This issue affects: Secomea GateManager all versions prior to 9.4.621054022π Read
via "National Vulnerability Database".
βΌ CVE-2021-28038 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of service may occur during misbehavior of a networking frontend driver. NOTE: this issue exists because of an incomplete fix for CVE-2021-26931.π Read
via "National Vulnerability Database".
β Massive Supply-Chain Cyberattack Breaches Several Airlines β
π Read
via "Threat Post".
The cyberattack on SITA, a nearly ubiquitous airline service provider, has compromised frequent-flyer data across many carriers.π Read
via "Threat Post".
Threat Post
Massive Supply-Chain Cyberattack Breaches Several Airlines
The cyberattack on a nearly ubiquitous airline service provider has compromised frequent-flyer data across many carriers.
π΄ 5 Ways Social Engineers Crack Into Human Beings π΄
π Read
via "Dark Reading".
These common human traits are the basic ingredients in the con-man's recipe for trickery.π Read
via "Dark Reading".
Dark Reading
5 Ways Social Engineers Crack Into Human Beings
These common human traits are the basic ingredients in the con-man's recipe for trickery.
β WordPress Injection Anchors Widespread Malware Campaign β
π Read
via "Threat Post".
Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible.π Read
via "Threat Post".
Threat Post
WordPress Injection Anchors Widespread Malware Campaign
Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible.
β U.S. DoD Weapons Programs Lack βKeyβ Cybersecurity Measures β
π Read
via "Threat Post".
The lack of cybersecurity requirements in weapons contracts from the Department of Defense opens the door for dangerous cyberattacks.π Read
via "Threat Post".
Threat Post
U.S. DoD Weapons Programs Lack βKeyβ Cybersecurity Measures
The lack of cybersecurity requirements in weapons contracts from the Department of Defense opens the door for dangerous cyberattacks.
π΄ Microsoft Adopted an 'Aggressive' Strategy for Sharing SolarWinds Attack Intel π΄
π Read
via "Dark Reading".
Rob Lefferts, corporate vice president for Microsoft 365 Security in Security and Compliance, explains the company's approach to keeping its customers and the industry apprised and updated on its findings from the now-infamous attack.π Read
via "Dark Reading".
Dark Reading
Cybersecurity Operations recent news | Dark Reading
Explore the latest news and expert commentary on Cybersecurity Operations, brought to you by the editors of Dark Reading
π΄ Microsoft Exchange Server Exploits Hit Retail, Government, Education π΄
π Read
via "Dark Reading".
Mandiant researchers identify a range of victims affected in attacks targeting newly reported Microsoft Exchange Server vulnerabilities.π Read
via "Dark Reading".
Darkreading
Microsoft Exchange Server Exploits Hit Retail, Government, Education
Mandiant researchers identify a range of victims affected in attacks targeting newly reported Microsoft Exchange Server vulnerabilities.
βΌ CVE-2021-27254 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7800. Authentication is not required to exploit this vulnerability. The specific flaw exists within the apply_save.cgi endpoint. This issue results from the use of hard-coded encryption key. An attacker can leverage this vulnerability to execute arbitrary code in the context of root. Was ZDI-CAN-12287.π Read
via "National Vulnerability Database".
βΌ CVE-2021-27256 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of the rc_service parameter provided to apply_save.cgi. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-12355.π Read
via "National Vulnerability Database".