β Finland Faces Blizzard of FluBot-Spreading Text Messages β
π Read
via "Threat Post".
Millions of texts leading to the Flubot spyware/banking trojan are targeting everyone who uses Androids in the country, in an "exceptional" attack.π Read
via "Threat Post".
Threat Post
Finland Faces Blizzard of Flubot-Spreading Text Messages
Millions of texts leading to the Flubot spyware/banking trojan are targeting everyone who uses Androids in the country, in an βexceptionalβ attack.
βΌ CVE-2021-38967 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39000 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38958 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue. IBM X-Force ID: 212042π Read
via "National Vulnerability Database".
βΌ CVE-2021-38999 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.π Read
via "National Vulnerability Database".
β Lloydβs Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks β
π Read
via "Threat Post".
The insurer wonβt pay for 'acts of cyber-war' or nation-state retaliation attacks. π Read
via "Threat Post".
Threat Post
Lloydβs Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks
The insurer wonβt pay for 'acts of cyber-war' or nation-state retaliation attacks.
π΄ Attacker Sentenced in Multimillion-Dollar SIM Hijacking Scheme π΄
π Read
via "Dark Reading".
A sixth member of international hacking group The Community was sentenced to 10 months in prison and ordered to pay $121,549.37 in restitution.π Read
via "Dark Reading".
Dark Reading
Attacker Sentenced in Multimillion-Dollar SIM Hijacking Scheme
A sixth member of international hacking group The Community was sentenced to 10 months in prison and ordered to pay $121,549.37 in restitution.
β How Decryption of Network Traffic Can Improve Security β
π Read
via "Threat Post".
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.π Read
via "Threat Post".
Threat Post
How Decryption of Network Traffic Can Improve Security
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.
βΌ CVE-2020-7879 βΌ
π Read
via "National Vulnerability Database".
This issue was discovered when the ipTIME C200 IP Camera was synchronized with the ipTIME NAS. It is necessary to extract value for ipTIME IP camera because the ipTIME NAS send ans setCookie('[COOKIE]') . The value is transferred to the --header option in wget binary, and there is no validation check. This vulnerability allows remote attackers to execute remote command.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42099 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine M365 Manager Plus before 4421 is vulnerable to file-upload remote code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43296 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to an SSRF attack in ActionExecutor.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31787 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43294 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Products module.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42564 βΌ
π Read
via "National Vulnerability Database".
An open redirect through HTML injection in confidential messages in Cryptshare before 5.1.0 allows remote attackers (with permission to provide confidential messages via Cryptshare) to redirect targeted victims to any URL via the '<meta http-equiv="refresh"' substring in the editor parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2021-44230 βΌ
π Read
via "National Vulnerability Database".
PortSwigger Burp Suite Enterprise Edition before 2021.11 on Windows has weak file permissions for the embedded H2 database, which might lead to privilege escalation. This issue can be exploited by an adversary who has already compromised a valid Windows account on the server via separate means. In this scenario, the compromised account may have inherited read access to sensitive configuration, database, and log files.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40101 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in Concrete CMS before 8.5.7. The Dashboard allows a user's password to be changed without a prompt for the current password.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43283 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Victure WR1200 devices through 1.0.3. A command injection vulnerability was found within the web interface of the device, allowing an attacker with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges. This occurs in the ping and traceroute features. An attacker would thus be able to use this vulnerability to open a reverse shell on the device with root privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4026 βΌ
π Read
via "National Vulnerability Database".
bookstack is vulnerable to Improper Access Controlπ Read
via "National Vulnerability Database".
βΌ CVE-2021-26612 βΌ
π Read
via "National Vulnerability Database".
An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creation included malicious code.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7880 βΌ
π Read
via "National Vulnerability Database".
The vulnerabilty was discovered in ActiveX module related to NeoRS remote support program. This issue allows an remote attacker to download and execute remote file. It is because of improper parameter validation of StartNeoRS function in ActiveX.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43320 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-41244. Reason: This candidate is a reservation duplicate of CVE-2021-41244. Notes: All CVE users should reference CVE-2021-41244 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".