βΌ CVE-2021-0705 βΌ
π Read
via "National Vulnerability Database".
In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-185388103π Read
via "National Vulnerability Database".
βΌ CVE-2021-42539 βΌ
π Read
via "National Vulnerability Database".
The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings change.π Read
via "National Vulnerability Database".
βΌ CVE-2021-0870 βΌ
π Read
via "National Vulnerability Database".
In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-192472262π Read
via "National Vulnerability Database".
βΌ CVE-2021-42538 βΌ
π Read
via "National Vulnerability Database".
The affected product is vulnerable to a parameter injection via passphrase, which enables the attacker to supply uncontrolled input.π Read
via "National Vulnerability Database".
βΌ CVE-2021-0643 βΌ
π Read
via "National Vulnerability Database".
In getAllSubInfoList of SubscriptionController.java, there is a possible way to retrieve a long term identifier without the correct permissions due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-183612370π Read
via "National Vulnerability Database".
βΌ CVE-2021-0652 βΌ
π Read
via "National Vulnerability Database".
In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185178568π Read
via "National Vulnerability Database".
βΌ CVE-2021-0708 βΌ
π Read
via "National Vulnerability Database".
In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-183262161π Read
via "National Vulnerability Database".
βΌ CVE-2021-42534 βΌ
π Read
via "National Vulnerability Database".
The affected productΓ’β¬β’s web application does not properly neutralize the input during webpage generation, which could allow an attacker to inject code in the input forms.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38485 βΌ
π Read
via "National Vulnerability Database".
The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk.π Read
via "National Vulnerability Database".
βΌ CVE-2021-0703 βΌ
π Read
via "National Vulnerability Database".
In SecondStageMain of init.cpp, there is a possible use after free due to incorrect shared_ptr usage. This could lead to local escalation of privilege if the attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-184569329π Read
via "National Vulnerability Database".
βΌ CVE-2021-42536 βΌ
π Read
via "National Vulnerability Database".
The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.π Read
via "National Vulnerability Database".
βΌ CVE-2021-0483 βΌ
π Read
via "National Vulnerability Database".
In multiple methods of AAudioService, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-153358911π Read
via "National Vulnerability Database".
βΌ CVE-2021-42169 βΌ
π Read
via "National Vulnerability Database".
The Simple Payroll System with Dynamic Tax Bracket in PHP using SQLite Free Source Code (by: oretnom23 ) is vulnerable from remote SQL-Injection-Bypass-Authentication for the admin account. The parameter (username) from the login form is not protected correctly and there is no security and escaping from malicious payloads.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42542 βΌ
π Read
via "National Vulnerability Database".
The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure.π Read
via "National Vulnerability Database".
π Friday Five 10/22 π
π Read
via "".
A GPS software bug, helping nonprofits defend against nation state attacks, and the DOJ wants more incident reporting - catch up on the infosec news of the week with the Friday Five!π Read
via "".
Digital Guardian
Friday Five 10/22
A GPS software bug, helping nonprofits defend against nation state attacks, and the DOJ wants more incident reporting - catch up on the infosec news of the week with the Friday Five!
π΄ 7 Ways to Lock Down Enterprise Printers π΄
π Read
via "Dark Reading".
Following the PrintNightmare case, printer security has become a hot issue for security teams. Here are seven ways to keep printers secure on enterprise networks.π Read
via "Dark Reading".
Dark Reading
7 Ways to Lock Down Enterprise Printers
Following the PrintNightmare case, printer security has become a hot issue for security teams. Here are seven ways to keep printers secure on enterprise networks.
β REvil Servers Shoved Offline by Governments β But Theyβll Be Back, Researchers Say β
π Read
via "Threat Post".
A multi-country effort has given ransomware gang REvil a taste of its own medicine by pwning its backups and pushing its leak site and Tor payment site offline.π Read
via "Threat Post".
Threat Post
REvil Servers Shoved Offline by Governments β But Theyβll Be Back, Researchers Say
A multi-country effort has given ransomware gang REvil a taste of its own medicine by pwning its backups and pushing its leak site and Tor payment site offline.
π΄ 'TodayZoo' Phishing Kit Cobbled Together From Other Malware π΄
π Read
via "Dark Reading".
Microsoft's analysis of a recent phishing attack shows how cybercriminals are mixing and matching to efficiently develop their attack frameworks.π Read
via "Dark Reading".
Dark Reading
'TodayZoo' Phishing Kit Cobbled Together From Other Malware
Microsoft's analysis of a recent phishing attack shows how cybercriminals are mixing and matching to efficiently develop their attack frameworks.
β FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks β
π Read
via "Threat Post".
The infamous Carbanak operator is moving is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure 'pen-testing' company.π Read
via "Threat Post".
Threat Post
FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks
The infamous Carbanak operator is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure "pen-testing" company.
βΌ CVE-2021-42840 βΌ
π Read
via "National Vulnerability Database".
SuiteCRM before 7.11.19 allows remote code execution via the system settings Log File Name setting. In certain circumstances involving admin account takeover, logger_file_name can refer to an attacker-controlled PHP file under the web root, because only the all-lowercase PHP file extensions were blocked. NOTE: this issue exists because of an incomplete fix for CVE-2020-28328.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42556 βΌ
π Read
via "National Vulnerability Database".
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file.π Read
via "National Vulnerability Database".