‼ CVE-2021-24029 ‼
📖 Read
via "National Vulnerability Database".
A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to v2021.03.15.00.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-27290 ‼
📖 Read
via "National Vulnerability Database".
In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers with physical access to the configuration interface's logs to get valid checksums for tampered configuration files.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-20280 ‼
📖 Read
via "National Vulnerability Database".
Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-20279 ‼
📖 Read
via "National Vulnerability Database".
The ID number user profile field required additional sanitizing to prevent a stored XSS risk in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-20281 ‼
📖 Read
via "National Vulnerability Database".
It was possible for some users without permission to view other users' full names to do so via the online users block in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-3418 ‼
📖 Read
via "National Vulnerability Database".
If certificates that signed grub are installed into db, grub can be booted directly. It will then boot any kernel without signature validation. The booted kernel will think it was booted in secureboot mode and will implement lockdown, yet it could have been tampered. This flaw is a reintroduction of CVE-2020-15705 and only affects grbu2 versions prior to 2.06 and upstream and distributions using the shim_lock mechanism.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26987 ‼
📖 Read
via "National Vulnerability Database".
Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.📖 Read
via "National Vulnerability Database".
🦿 Security firm releases free Purple Knight tool to spot weaknesses in Active Directory 🦿
📖 Read
via "Tech Republic".
The AD report card scores the security of Group Policies, Kerberos security and AD infrastructure.📖 Read
via "Tech Republic".
TechRepublic
Security firm releases free Purple Knight tool to spot weaknesses in Active Directory
The AD report card scores the security of Group Policies, Kerberos security and AD infrastructure.
❌ Google Releases Spectre PoC Exploit For Chrome ❌
📖 Read
via "Threat Post".
Google has released the side-channel exploit in hopes of motivating web-application developers to protect their sites.📖 Read
via "Threat Post".
Threat Post
Google Releases Spectre PoC Exploit For Chrome
Google has released the side-channel exploit in hopes of motivating web-application developers to protect their sites.
🕴 Combating Call Center Fraud in the Age of COVID 🕴
📖 Read
via "Dark Reading".
With many agents now working from home, call centers require new technology, new processes, and a new way of thinking about security.📖 Read
via "Dark Reading".
Dark Reading
Combating Call Center Fraud in the Age of COVID
With many agents now working from home, call centers require new technology, new processes, and a new way of thinking about security.
🕴 Metasploit Creator HD Moore's New Startup Raises $5M 🕴
📖 Read
via "Dark Reading".
Startup Rumble enters major new phase with venture capital investment led by Cisco-backed fund as well as big-name security entrepreneurs.📖 Read
via "Dark Reading".
Dark Reading
Metasploit Creator HD Moore's New Startup Raises $5M
Startup Rumble enters major new phase with venture capital investment led by Cisco-backed fund as well as big-name security entrepreneurs.
🛠 American Fuzzy Lop plus plus 3.11c 🛠
📖 Read
via "Packet Storm Security".
Google's American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly simple but rock-solid instrumentation-guided genetic algorithm. afl++ is a superior fork to Google's afl. It has more speed, more and better mutations, more and better instrumentation, custom module support, etc.📖 Read
via "Packet Storm Security".
Packetstormsecurity
American Fuzzy Lop plus plus 3.11c ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
‼ CVE-2020-1926 ‼
📖 Read
via "National Vulnerability Database".
Apache Hive cookie signature verification used a non constant time comparison which is known to be vulnerable to timing attacks. This could allow recovery of another users cookie signature. The issue was addressed in Apache Hive 2.3.8📖 Read
via "National Vulnerability Database".
🦿 Why traditional malware detection can't stop the latest security threats 🦿
📖 Read
via "Tech Republic".
Isolating your hardware and your applications is a more effective way to prevent malware from infecting your critical endpoints, says HP.📖 Read
via "Tech Republic".
TechRepublic
Why traditional malware detection can't stop the latest security threats
Isolating your hardware and your applications is a more effective way to prevent malware from infecting your critical endpoints, says HP.
‼ CVE-2020-4890 ‼
📖 Read
via "National Vulnerability Database".
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user with a valid role to the REST API to cause a denial of service due to weak or absense of rate limiting. IBM X-Force ID: 190973.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-4891 ‼
📖 Read
via "National Vulnerability Database".
IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 uses an inadequate account lockout setting that could allow a local user er to brute force Rest API account credentials. IBM X-Force ID: 190974.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-24263 ‼
📖 Read
via "National Vulnerability Database".
Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as SYS_MODULE, which can be used to take over the Docker host.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-28543 ‼
📖 Read
via "National Vulnerability Database".
Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-24264 ‼
📖 Read
via "National Vulnerability Database".
Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container is spawned, it can be leveraged to break out of the container leading to complete Docker host machine takeover.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21193 ‼
📖 Read
via "National Vulnerability Database".
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21192 ‼
📖 Read
via "National Vulnerability Database".
Heap buffer overflow in tab groups in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".