β Poisoned proxy PACs! The NPM package with a network-wide security holeβ¦ β
π Read
via "Naked Security".
3,000,000 downloads a week... if only they'd read the fastitidous manual!π Read
via "Naked Security".
Naked Security
Poisoned proxy PACs! The NPM package with a network-wide security holeβ¦
3,000,000 downloads a weekβ¦ if only theyβd read the fastidious manual!
β Human Fraud: Detecting Them Before They Detect You β
π Read
via "Threat Post".
Tony Lauro, director of security technology and strategy at Akamai, discusses how to disrupt account takeovers in the exploitation phase of an attack.π Read
via "Threat Post".
Threat Post
Human Fraud: Detecting Them Before They Detect You
Tony Lauro, director of security technology and strategy at Akamai, discusses how to disrupt account takeovers in the exploitation phase of an attack.
βΌ CVE-2021-36094 βΌ
π Read
via "National Vulnerability Database".
It's possible to craft a request for appointment edit screen, which could lead to the XSS attack. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36096 βΌ
π Read
via "National Vulnerability Database".
Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions; 8.0.x version 8.0.15 and prior versions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36093 βΌ
π Read
via "National Vulnerability Database".
It's possible to create an email which can be stuck while being processed by PostMaster filters, causing DoS. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions; 8.0.x version 8.0.15 and prior versions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36095 βΌ
π Read
via "National Vulnerability Database".
Malicious attacker is able to find out valid user logins by using the "lost password" feature. This issue affects: OTRS AG ((OTRS)) Community Edition version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40531 βΌ
π Read
via "National Vulnerability Database".
Sketch before 75 mishandles external library feeds.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40532 βΌ
π Read
via "National Vulnerability Database".
Telegram Web K Alpha before 0.7.2 mishandles the characters in a document extension.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40540 βΌ
π Read
via "National Vulnerability Database".
ulfius_uri_logger in Ulfius HTTP Framework before 2.7.4 omits con_info initialization and a con_info->request NULL check for certain malformed HTTP requests.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31611 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle an out-of-order LMP Setup procedure that is followed by a malformed LMP packet, allowing attackers in radio range to deadlock a device via a crafted LMP packet. The user needs to manually reboot the device to restore communication.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34144 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C BT SDK through 0.9.1 does not properly handle the reception of truncated LMP_SCO_Link_Request packets while no other BT connections are active, allowing attackers in radio range to prevent new BT connections (disabling the AB5301A inquiry and page scan procedures) via a crafted LMP packet. The user needs to manually perform a power cycle (restart) of the device to restore BT connectivity.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33483 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro 3.8. The comment posting functionality allows an attacker to add an XSS payload to the JSON request that will execute when users visit the page with the comment.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31609 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and earlier does not properly handle the reception of an oversized LMP packet greater than 17 bytes, allowing attackers in radio range to trigger a crash in WT32i via a crafted LMP packet.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31613 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly handle the reception of a truncated LMP packet during the LMP auto rate procedure, allowing attackers in radio range to immediately crash (and restart) a device via a crafted LMP packet.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34148 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after completion of the LMP setup procedure, allowing attackers in radio range to trigger a denial of service (firmware crash) via a crafted LMP packet.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34146 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and restart (crash) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34149 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation on the Texas Instruments CC256XCQFN-EM does not properly handle the reception of continuous LMP_AU_Rand packets, allowing attackers in radio range to trigger a denial of service (deadlock) of the device by flooding it with LMP_AU_Rand packets after the paging procedure.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39278 βΌ
π Read
via "National Vulnerability Database".
Certain MOXA devices allow reflected XSS via the Config Import menu. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3, WDR-3124A-EU-T 2.3, WDR-3124A-US 2.3, and WDR-3124A-US-T 2.3.π Read
via "National Vulnerability Database".
βΌ CVE-2021-28136 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly handle the reception of multiple LMP IO Capability Request packets during the pairing process, allowing attackers in radio range to trigger memory corruption (and consequently a crash) in ESP32 via a replayed (duplicated) LMP packet.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33484 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro 3.8. An attacker can download a copy of the installer, decompile it, and discover a hardcoded IV used to encrypt the username and userid in the comment POST request. Additionally, the attacker can decrypt the encrypted encryption key (sent as a parameter in the comment form request) by setting this encrypted value as the username, which will appear on the comment page in its decrypted form. Using these two values (combined with the encryption functionality discovered in the decompiled installer), the attacker can encrypt another user's ID and username. These values can be used as part of the comment posting request in order to spoof the user.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33831 βΌ
π Read
via "National Vulnerability Database".
api/account/register in the TH Wildau COVID-19 Contact Tracing application through 2021-09-01 has Incorrect Access Control. An attacker can interfere with tracing of infection chains by creating 500 random users within 2500 seconds.π Read
via "National Vulnerability Database".