β How Decryption of Network Traffic Can Improve Security β
π Read
via "Threat Post".
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.π Read
via "Threat Post".
Threat Post
How Decryption of Network Traffic Can Improve Security
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.
βΌ CVE-2020-7879 βΌ
π Read
via "National Vulnerability Database".
This issue was discovered when the ipTIME C200 IP Camera was synchronized with the ipTIME NAS. It is necessary to extract value for ipTIME IP camera because the ipTIME NAS send ans setCookie('[COOKIE]') . The value is transferred to the --header option in wget binary, and there is no validation check. This vulnerability allows remote attackers to execute remote command.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42099 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine M365 Manager Plus before 4421 is vulnerable to file-upload remote code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43296 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to an SSRF attack in ActionExecutor.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31787 βΌ
π Read
via "National Vulnerability Database".
The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43294 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Products module.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42564 βΌ
π Read
via "National Vulnerability Database".
An open redirect through HTML injection in confidential messages in Cryptshare before 5.1.0 allows remote attackers (with permission to provide confidential messages via Cryptshare) to redirect targeted victims to any URL via the '<meta http-equiv="refresh"' substring in the editor parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2021-44230 βΌ
π Read
via "National Vulnerability Database".
PortSwigger Burp Suite Enterprise Edition before 2021.11 on Windows has weak file permissions for the embedded H2 database, which might lead to privilege escalation. This issue can be exploited by an adversary who has already compromised a valid Windows account on the server via separate means. In this scenario, the compromised account may have inherited read access to sensitive configuration, database, and log files.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40101 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in Concrete CMS before 8.5.7. The Dashboard allows a user's password to be changed without a prompt for the current password.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43283 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Victure WR1200 devices through 1.0.3. A command injection vulnerability was found within the web interface of the device, allowing an attacker with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges. This occurs in the ping and traceroute features. An attacker would thus be able to use this vulnerability to open a reverse shell on the device with root privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4026 βΌ
π Read
via "National Vulnerability Database".
bookstack is vulnerable to Improper Access Controlπ Read
via "National Vulnerability Database".
βΌ CVE-2021-26612 βΌ
π Read
via "National Vulnerability Database".
An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creation included malicious code.π Read
via "National Vulnerability Database".
βΌ CVE-2020-7880 βΌ
π Read
via "National Vulnerability Database".
The vulnerabilty was discovered in ActiveX module related to NeoRS remote support program. This issue allows an remote attacker to download and execute remote file. It is because of improper parameter validation of StartNeoRS function in ActiveX.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43320 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-41244. Reason: This candidate is a reservation duplicate of CVE-2021-41244. Notes: All CVE users should reference CVE-2021-41244 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43319 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43284 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH (regardless of whether the admin password was changed on the web interface).π Read
via "National Vulnerability Database".
βΌ CVE-2021-22095 βΌ
π Read
via "National Vulnerability Database".
In Spring AMQP versions 2.2.0 - 2.2.19 and 2.3.0 - 2.3.11, the Spring AMQP Message object, in its toString() method, will create a new String object from the message body, regardless of its size. This can cause an OOM Error with a large messageπ Read
via "National Vulnerability Database".
βΌ CVE-2021-43282 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered on Victure WR1200 devices through 1.0.3. The default Wi-Fi WPA2 key is advertised to anyone within Wi-Fi range through the router's MAC address. The device default Wi-Fi password corresponds to the last 4 bytes of the MAC address of its 2.4 GHz network interface controller (NIC). An attacker within scanning range of the Wi-Fi network can thus scan for Wi-Fi networks to obtain the default key.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43295 βΌ
π Read
via "National Vulnerability Database".
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Accounts module.π Read
via "National Vulnerability Database".
π΄ Whatβs the Difference Between SASE and SD-WAN? π΄
π Read
via "Dark Reading".
While SD-WAN is a key part of a hybrid workplace and multicloud operation, it should be treated as a stepping stone to SASE, not an alternative.π Read
via "Dark Reading".
Dark Reading
Whatβs the Difference Between SASE and SD-WAN?
While SD-WAN is a key part of a hybrid workplace and multicloud operation, it should be treated as a stepping stone to SASE, not an alternative.
π΄ HP Issues Firmware Updates for Printer Product Vulnerabilities π΄
π Read
via "Dark Reading".
More than 150 HP printer models have bugs that could enable attackers to steal data and gain an initial foothold on enterprise networks.π Read
via "Dark Reading".
Dark Reading
HP Issues Firmware Updates for Printer Product Vulnerabilities
More than 150 HP printer models have bugs that could enable attackers to steal data and gain an initial foothold on enterprise networks.