🛡 Cybersecurity & Privacy 🛡 - News
@cibsecurity
25.8K subscribers
89.2K links
🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
🛡 Cybersecurity & Privacy 🛡 - News
25.8K subscribers
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-38650

Microsoft Office Spoofing Vulnerability

📖 Read

via "National Vulnerability Database".
140 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-3797

hestiacp is vulnerable to Use of Wrong Operator in String Comparison

📖 Read

via "National Vulnerability Database".
131 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-40845

The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, called AlphaWeb XE, does not restrict file upload in the Custom Scripts section at php/index.php. Neither the content nor extension of the uploaded files is checked, allowing execution of PHP code under the /cmd directory.

📖 Read

via "National Vulnerability Database".
129 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36974

Windows SMB Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".
127 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36972

Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36960.

📖 Read

via "National Vulnerability Database".
123 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-38649

Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38645, CVE-2021-38648.

📖 Read

via "National Vulnerability Database".
128 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-3801

prism is vulnerable to Inefficient Regular Expression Complexity

📖 Read

via "National Vulnerability Database".
130 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36956

Azure Sphere Information Disclosure Vulnerability

📖 Read

via "National Vulnerability Database".
132 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-38655

Microsoft Excel Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
132 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36960

Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36972.

📖 Read

via "National Vulnerability Database".
137 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-41076

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

📖 Read

via "National Vulnerability Database".
150 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-38628

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38638.

📖 Read

via "National Vulnerability Database".
158 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-38626

Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38625.

📖 Read

via "National Vulnerability Database".
182 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-3796

vim is vulnerable to Use After Free

📖 Read

via "National Vulnerability Database".
200 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36969

Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-38635, CVE-2021-38636.

📖 Read

via "National Vulnerability Database".
205 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-36968

Windows DNS Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".
219 views
🛡 Cybersecurity & Privacy 🛡 - News
S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]

Bugs! So many bugs! Latest episode - listen now...

📖 Read

via "Naked Security".
Naked Security
S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
Bugs! So many bugs! Latest episode – listen now…
212 views
🛡 Cybersecurity & Privacy 🛡 - News
🦿 You can now eliminate the password for your Microsoft account 🦿

By using an alternative means of authentication, you can now go passwordless on your Microsoft account.

📖 Read

via "Tech Republic".
202 views
🛡 Cybersecurity & Privacy 🛡 - News
🗓️ Remote code execution flaw allowed hijack of Motorola Halo+ baby monitors 🗓️

Expectant parent finds severe security problems in his new baby monitor

📖 Read

via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Remote code execution flaw allowed hijack of Motorola Halo+ baby monitors
Expectant parent finds severe security problems in his new baby monitor
154 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2021-39189

Pimcore is an open source data & experience management platform. In versions prior to 10.1.3, it is possible to enumerate usernames via the forgot password functionality. This issue is fixed in version 10.1.3. As a workaround, one may apply the available patch manually.

📖 Read

via "National Vulnerability Database".
131 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2020-19155

Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain sensitive information and/or execute arbitrary code via the 'FileManager.rename()' function in the component 'modules/filemanager/FileManagerController.java'.

📖 Read

via "National Vulnerability Database".
121 views