βΌ CVE-2021-44680 βΌ
π Read
via "National Vulnerability Database".
An issue (4 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited due to deserialization behavior that is inherent to the .NET Remoting service. A malicious attacker can exploit both TCP remoting services and local IPC services on the Enterprise Vault Server. This vulnerability is mitigated by properly configuring the servers and firewall as described in the vendor's security alert for this vulnerability (VTS21-003, ZDI-CAN-14075).π Read
via "National Vulnerability Database".
π΄ MITRE Engenuity & Cybrary Surpass 25,000 Users in MITRE ATT&CK Defender Certification Program π΄
π Read
via "Dark Reading".
The program helps close the skill gap to enable defenders to gain the advantage over cyber adversaries.π Read
via "Dark Reading".
Dark Reading
MITRE Engenuity & Cybrary Surpass 25,000 Users in MITRE ATT&CK Defender Certification Program
The program helps close the skill gap to enable defenders to gain the advantage over cyber adversaries.
βΌ CVE-2021-44684 βΌ
π Read
via "National Vulnerability Database".
naholyr github-todos 3.1.0 is vulnerable to command injection. The range argument for the _hook subcommand is concatenated without any validation, and is directly used by the exec function.π Read
via "National Vulnerability Database".
βΌ CVE-2021-44685 βΌ
π Read
via "National Vulnerability Database".
Git-it through 4.4.0 allows OS command injection at the Branches Aren't Just For Birds challenge step. During the verification process, it attempts to run the reflog command followed by the current branch name (which is not sanitized for execution).π Read
via "National Vulnerability Database".
βΌ CVE-2021-44686 βΌ
π Read
via "National Vulnerability Database".
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.π Read
via "National Vulnerability Database".
ποΈ SSRF vulnerability patched in Jamf Pro mobile security platform ποΈ
π Read
via "The Daily Swig".
Apple MDM service forced to execute arbitrary web requestsπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
SSRF vulnerability patched in Jamf Pro mobile security platform
Apple MDM service forced to execute arbitrary web requests
π¦Ώ You can learn coding, 3D animation, cybersecurity and more with this e-learning bundle π¦Ώ
π Read
via "Tech Republic".
Get access to certification trainings, tech classes, art lessons and much more. You'll get lifetime access, so you can learn whenever you have the time.π Read
via "Tech Republic".
TechRepublic
You can learn coding, 3D animation, cybersecurity and more with this e-learning bundle
Get access to certification trainings, tech classes, art lessons and much more. You'll get lifetime access, so you can learn whenever you have the time.
βΌ CVE-2021-28703 βΌ
π Read
via "National Vulnerability Database".
grant table v2 status pages may remain accessible after de-allocation (take two) Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-allocated when a guest switched (back) from v2 to v1. The freeing of such pages requires that the hypervisor know where in the guest these pages were mapped. The hypervisor tracks only one use within guest space, but racing requests from the guest to insert mappings of these pages may result in any of them to become mapped in multiple locations. Upon switching back from v2 to v1, the guest would then retain access to a page that was freed and perhaps re-used for other purposes. This bug was fortuitously fixed by code cleanup in Xen 4.14, and backported to security-supported Xen branches as a prerequisite of the fix for XSA-378.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4049 βΌ
π Read
via "National Vulnerability Database".
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)π Read
via "National Vulnerability Database".
βΌ CVE-2021-29116 βΌ
π Read
via "National Vulnerability Database".
A stored Cross Site Scripting (XSS) vulnerability in Esri ArcGIS Server feature services versions 10.8.1 and 10.9 (only) feature services may allow a remote, unauthenticated attacker to pass and store malicious strings via crafted queries which when accessed could potentially execute arbitrary JavaScript code in the userΓ’β¬β’s browser.π Read
via "National Vulnerability Database".
βΌ CVE-2021-29114 βΌ
π Read
via "National Vulnerability Database".
A SQL injection vulnerability in feature services provided by Esri ArcGIS Server 10.9 and below allows a remote, unauthenticated attacker to impact the confidentiality, integrity and availability of targeted services via specifically crafted queries.π Read
via "National Vulnerability Database".
βΌ CVE-2021-29115 βΌ
π Read
via "National Vulnerability Database".
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. This issue may reveal field names, but not not disclose features.π Read
via "National Vulnerability Database".
βΌ CVE-2021-29113 βΌ
π Read
via "National Vulnerability Database".
A remote file inclusion vulnerability in the ArcGIS Server help documentation may allow a remote, unauthenticated attacker to inject attacker supplied html into a page.π Read
via "National Vulnerability Database".
β SolarWinds Attackers Spotted Using New Tactics, Malware β
π Read
via "Threat Post".
One year after the disruptive supply-chain attacks, researchers have observed two new clusters of activity from the Russia-based actors that signal a significant threat may be brewing.π Read
via "Threat Post".
Threat Post
SolarWinds Attackers Spotted Using New Tactics, Malware
One year after the disruptive supply-chain attacks, researchers have observed two new clusters of activity from the Russia-based actors that signal a significant threat may be brewing.
βΌ CVE-2021-44187 βΌ
π Read
via "National Vulnerability Database".
Adobe Bridge versions 11.1.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious SGI file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42133 βΌ
π Read
via "National Vulnerability Database".
An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform an arbitrary file write.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40095 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability (when processing remote input in the log files downloaded by an authenticated administrator user), leading to the ability to read arbitrary files on the server filesystems.π Read
via "National Vulnerability Database".
βΌ CVE-2020-27413 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application.π Read
via "National Vulnerability Database".
βΌ CVE-2021-22955 βΌ
π Read
via "National Vulnerability Database".
A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 when configured as a VPN (Gateway) or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42127 βΌ
π Read
via "National Vulnerability Database".
A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42128 βΌ
π Read
via "National Vulnerability Database".
An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail Service allows Privilege Escalation via Enterprise Server Service.π Read
via "National Vulnerability Database".