❌ 4-Year-Old Microsoft Azure Zero-Day Exposes Web App Source Code ❌
📖 Read
via "Threat Post".
The security vulnerability could expose passwords and access tokens, along with blueprints for internal infrastructure and finding software vulnerabilities.📖 Read
via "Threat Post".
Threat Post
4-Year-Old Microsoft Azure Zero-Day Exposes Web App Source Code
The security vulnerability could expose passwords and access tokens, along with blueprints for internal infrastructure and finding software vulnerabilities.
‼ CVE-2021-43854 ‼
📖 Read
via "National Vulnerability Database".
NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. Versions prior to 3.6.5 are vulnerable to regular expression denial of service (ReDoS) attacks. The vulnerability is present in PunktSentenceTokenizer, sent_tokenize and word_tokenize. Any users of this class, or these two functions, are vulnerable to the ReDoS attack. In short, a specifically crafted long input to any of these vulnerable functions will cause them to take a significant amount of execution time. If your program relies on any of the vulnerable functions for tokenizing unpredictable user input, then we would strongly recommend upgrading to a version of NLTK without the vulnerability. For users unable to upgrade the execution time can be bounded by limiting the maximum length of an input to any of the vulnerable functions. Our recommendation is to implement such a limit.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-4118 ‼
📖 Read
via "National Vulnerability Database".
pytorch-lightning is vulnerable to Deserialization of Untrusted Data📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43849 ‼
📖 Read
via "National Vulnerability Database".
cordova-plugin-fingerprint-aio is a plugin provides a single and simple interface for accessing fingerprint APIs on both Android 6+ and iOS. In versions prior to 5.0.1 The exported activity `de.niklasmerz.cordova.biometric.BiometricActivity` can cause the app to crash. This vulnerability occurred because the activity didn't handle the case where it is requested with invalid or empty data which results in a crash. Any third party app can constantly call this activity with no permission. A 3rd party app/attacker using event listener can continually stop the app from working and make the victim unable to open it. Version 5.0.1 of the cordova-plugin-fingerprint-aio doesn't export the activity anymore and is no longer vulnerable. If you want to fix older versions change the attribute android:exported in plugin.xml to false. Please upgrade to version 5.0.1 as soon as possible.📖 Read
via "National Vulnerability Database".
🦿 Grinch bots hijack all kinds of holiday shopping, from gift cards to hype drop sales 🦿
📖 Read
via "Tech Republic".
Kasada research finds that all-in-one bots are fooling cyberdefenses and automating the checkout process to snap up in-demand goods.📖 Read
via "Tech Republic".
TechRepublic
Grinch bots hijack all kinds of holiday shopping, from gift cards to hype drop sales
Kasada research finds that all-in-one bots are fooling cyberdefenses and automating the checkout process to snap up in-demand goods.
‼ CVE-2021-4024 ‼
📖 Read
via "National Vulnerability Database".
A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-44543 ‼
📖 Read
via "National Vulnerability Database".
An XSS vulnerability was found in Privoxy which was fixed in cgi_error_no_template() by encode the template name when Privoxy is configured to servce the user-manual itself.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40161 ‼
📖 Read
via "National Vulnerability Database".
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDF earlier than 9.0.7 version.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43984 ‼
📖 Read
via "National Vulnerability Database".
mySCADA myPRO: Versions 8.20.0 and prior has a feature where the firmware can be updated, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2019-8702 ‼
📖 Read
via "National Vulnerability Database".
This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user may be able to read a persistent account identifier.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-3886 ‼
📖 Read
via "National Vulnerability Database".
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to execute arbitrary code with kernel privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2017-13835 ‼
📖 Read
via "National Vulnerability Database".
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13. An application may be able to execute arbitrary code with elevated privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-20318 ‼
📖 Read
via "National Vulnerability Database".
The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using a JMS ObjectMessage.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-3896 ‼
📖 Read
via "National Vulnerability Database".
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files.📖 Read
via "National Vulnerability Database".
‼ CVE-2017-13905 ‼
📖 Read
via "National Vulnerability Database".
A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-23198 ‼
📖 Read
via "National Vulnerability Database".
mySCADA myPRO: Versions 8.20.0 and prior has a feature where the password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27007 ‼
📖 Read
via "National Vulnerability Database".
NetApp Virtual Desktop Service (VDS) when used with an HTML5 gateway is susceptible to a vulnerability which when successfully exploited could allow an unauthenticated attacker to takeover a Remote Desktop Session.📖 Read
via "National Vulnerability Database".
‼ CVE-2018-4478 ‼
📖 Read
via "National Vulnerability Database".
A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2018-4302 ‼
📖 Read
via "National Vulnerability Database".
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-3584 ‼
📖 Read
via "National Vulnerability Database".
A server side remote code execution vulnerability was found in Foreman project. A authenticated attacker could use Sendmail configuration options to overwrite the defaults and perform command injection. The highest threat from this vulnerability is to confidentiality, integrity and availability of system. Fixed releases are 2.4.1, 2.5.1, 3.0.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43989 ‼
📖 Read
via "National Vulnerability Database".
mySCADA myPRO Versions 8.20.0 and prior stores passwords using MD5, which may allow an attacker to crack the previously retrieved password hashes.📖 Read
via "National Vulnerability Database".