‼ CVE-2021-27506 ‼
📖 Read
via "National Vulnerability Database".
In Stormshield Network Security (SNS) 1.0 through 4.2.0, the parsing of some malformed files can lead to the crash of ClamAV service causing a Denial of Service.📖 Read
via "National Vulnerability Database".
🔏 Friday Five 3/19 🔏
📖 Read
via "Digital Guardian".
Stolen phone access, cybersecurity in national security, and the theft of NFTs - catch up on all of the week's infosec news with the Friday Five!📖 Read
via "Digital Guardian".
Digital Guardian
Friday Five 3/19
Stolen phone access, cybersecurity in national security, and the theft of NFTs - catch up on all of the week's infosec news with the Friday Five!
🦿 How to use semanage and avoid disabling SELinux 🦿
📖 Read
via "Tech Republic".
Jack Wallen introduces you to three semanage commands that will help make dealing with SELinux considerably easier.📖 Read
via "Tech Republic".
TechRepublic
How to use semanage and avoid disabling SELinux
Jack Wallen introduces you to three semanage commands that will help make dealing with SELinux considerably easier.
‼ CVE-2020-4635 ‼
📖 Read
via "National Vulnerability Database".
IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25277 ‼
📖 Read
via "National Vulnerability Database".
FTAPI 4.0 - 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-25278 ‼
📖 Read
via "National Vulnerability Database".
FTAPI 4.0 through 4.10 allows XSS via an SVG document to the Background Image upload feature in the Submit Box Template Editor.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27906 ‼
📖 Read
via "National Vulnerability Database".
A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27807 ‼
📖 Read
via "National Vulnerability Database".
A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21390 ‼
📖 Read
via "National Vulnerability Database".
MinIO is an open-source high performance object storage service and it is API compatible with Amazon S3 cloud storage service. In MinIO before version RELEASE.2021-03-17T02-33-02Z, there is a vulnerability which enables MITM modification of request bodies that are meant to have integrity guaranteed by chunk signatures. In a PUT request using aws-chunked encoding, MinIO ordinarily verifies signatures at the end of a chunk. This check can be skipped if the client sends a false chunk size that is much greater than the actual data sent: the server accepts and completes the request without ever reaching the end of the chunk + thereby without ever checking the chunk signature. This is fixed in version RELEASE.2021-03-17T02-33-02Z. As a workaround one can avoid using "aws-chunked" encoding-based chunk signature upload requests instead use TLS. MinIO SDKs automatically disable chunked encoding signature when the server endpoint is configured with TLS.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21387 ‼
📖 Read
via "National Vulnerability Database".
Wrongthink peer-to-peer, end-to-end encrypted messenger with PeerJS and Axolotl ratchet. In wrongthink from version 2.0.0 and before 2.3.0 there was a set of vulnerabilities causing inadequate encryption strength. Part of the secret identity key was disclosed by the fingerprint used for connection. Additionally, the safety number was improperly calculated. It was computed using part of one of the public identity keys instead of being derived from both public identity keys. This caused issues in computing safety numbers which would potentially be exploitable in the real world. Additionally there was inadequate encryption strength due to use of 1024-bit DSA keys. These issues are all fixed in version 2.3.0.📖 Read
via "National Vulnerability Database".
❌ Office 365 Phishing Attack Targets Financial Execs ❌
📖 Read
via "Threat Post".
Attackers move on new CEOs, using transition confusion to harvest Microsoft credentials.📖 Read
via "Threat Post".
Threat Post
Office 365 Phishing Attack Targets Financial Execs
Attackers move on new CEOs, using transition confusion to harvest Microsoft credentials.
🕴 Verkada Attacker Charged with Wire Fraud, Conspiracy in US 🕴
📖 Read
via "Dark Reading".
Swiss national Till Kottmann and co-conspirators are accused of breaking into dozens of US companies and government entities.📖 Read
via "Dark Reading".
Dark Reading
Verkada Attacker Charged with Wire Fraud, Conspiracy in US
Swiss national Till Kottmann and co-conspirators are accused of breaking into dozens of US companies and government entities.
‼ CVE-2021-20077 ‼
📖 Read
via "National Vulnerability Database".
Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to obtain the token.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27520 ‼
📖 Read
via "National Vulnerability Database".
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "author" parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27519 ‼
📖 Read
via "National Vulnerability Database".
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch" parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26990 ‼
📖 Read
via "National Vulnerability Database".
Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability that could allow a remote attacker to overwrite arbitrary system files.📖 Read
via "National Vulnerability Database".
‼ CVE-2019-10127 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in postgresql versions 11.x prior to 11.3. The Windows installer for BigSQL-supplied PostgreSQL does not lock down the ACL of the binary installation directory or the ACL of the data directory; it keeps the inherited ACL. In the default configuration, an attacker having both an unprivileged Windows account and an unprivileged PostgreSQL account can cause the PostgreSQL service account to execute arbitrary code. An attacker having only the unprivileged Windows account can read arbitrary data directory files, essentially bypassing database-imposed read access limitations. An attacker having only the unprivileged Windows account can also delete certain data directory files.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26991 ‼
📖 Read
via "National Vulnerability Database".
Cloud Manager versions prior to 3.9.4 contain an insecure Cross-Origin Resource Sharing (CORS) policy which could allow a remote attacker to interact with Cloud Manager.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26992 ‼
📖 Read
via "National Vulnerability Database".
Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability which could allow a remote attacker to cause a Denial of Service (DoS).📖 Read
via "National Vulnerability Database".
❌ Critical F5 BIG-IP Flaw Now Under Active Attack ❌
📖 Read
via "Threat Post".
Researchers are reporting mass scanning for – and in-the-wild exploitation of – a critical-severity flaw in the F5 BIG-IP and BIG-IQ enterprise networking infrastructure.📖 Read
via "Threat Post".
Threat Post
Critical F5 BIG-IP Flaw Now Under Active Attack
Researchers are reporting mass scanning for – and in-the-wild exploitation of – a critical-severity flaw in the F5 BIG-IP and BIG-IQ enterprise networking infrastructure.
🕴 New Malware Hidden in Apple IDE Targets macOS Developers 🕴
📖 Read
via "Dark Reading".
XcodeSpy is latest example of growing attacks on software supply chain.📖 Read
via "Dark Reading".
Dark Reading
New Malware Hidden in Apple IDE Targets macOS Developers
XcodeSpy is latest example of growing attacks on software supply chain.