βΌ CVE-2021-40568 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow vulnerability exists in Gpac through 1.0.1 via a malformed MP4 file in the svc_parse_slice function in av_parsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22125 βΌ
π Read
via "National Vulnerability Database".
In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the article tag. An authenticated admin attacker can inject arbitrary javascript code that will execute on a victimΓ’β¬β’s server.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22124 βΌ
π Read
via "National Vulnerability Database".
In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the profile image. An authenticated attacker can upload a carefully crafted SVG file that will trigger arbitrary javascript to run on a victimΓ’β¬β’s browser.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39056 βΌ
π Read
via "National Vulnerability Database".
The IBM i 7.1, 7.2, 7.3, and 7.4 Extended Dynamic Remote SQL server (EDRSQL) could allow a remote authenticated user to send a specially crafted request and cause a denial of service. IBM X-Force ID: 214537.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40813 βΌ
π Read
via "National Vulnerability Database".
A cross-site scripting (XSS) vulnerability in the "Zip content" feature in Element-IT HTTP Commander 3.1.9 allows remote authenticated users to inject arbitrary web script or HTML via filenames.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40571 βΌ
π Read
via "National Vulnerability Database".
The binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in box_code_apple.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40569 βΌ
π Read
via "National Vulnerability Database".
The binary MP4Box in Gpac through 1.0.1 has a double-free vulnerability in the iloc_entry_del funciton in box_code_meta.c, which allows attackers to cause a denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22122 βΌ
π Read
via "National Vulnerability Database".
In Mattermost Focalboard, versions prior to v0.7.5, v0.8.4, v0.9.5, v0.10.1 and v0.11.0-rc1; as used respectively in Mattermost, versions prior to v5.37.6, v5.39.3, v6.0.4, v6.1.1 and v6.2.0, are vulnerable to Insufficient Session Expiration. When a user initiates a logout, their session is not invalidated properly. In addition, user sessions are stored in the browserΓ’β¬β’s local storage, which by default does not have an expiration time. This makes it possible for an attacker to steal and reuse the cookies using techniques such as XSS attacks, to completely take over a victim account.π Read
via "National Vulnerability Database".
βΌ CVE-2022-21678 βΌ
π Read
via "National Vulnerability Database".
Discourse is an open source discussion platform. Prior to version 2.8.0.beta11 in the `tests-passed` branch, version 2.8.0.beta11 in the `beta` branch, and version 2.7.13 in the `stable` branch, the bios of users who made their profiles private were still visible in the `<meta>` tags on their users' pages. The problem is patched in `tests-passed` version 2.8.0.beta11, `beta` version 2.8.0.beta11, and `stable` version 2.7.13 of Discourse.π Read
via "National Vulnerability Database".
β North Korean APTs Stole ~$400M in Crypto in 2021 β
π Read
via "Threat Post".
Meanwhile, EtherumMax got sued over an alleged pump-and-dump scam after using celebs like Floyd Mayweather Jr. & Kim Kardashian to promote EMAX Tokens.π Read
via "Threat Post".
Threat Post
North Korean APTs Stole ~$400M in Crypto in 2021
Meanwhile, EtherumMax got sued over an alleged pump-and-dump scam after using celebs like Floyd Mayweather Jr. & Kim Kardashian to promote EMAX Tokens.
π US Chamber of Commerce Calls for National Privacy Legislation π
π Read
via "".
Yet another industry group - the U.S. Chamber of Commerce - has called on Congress to pass comprehensive privacy legislation.π Read
via "".
Digital Guardian
US Chamber of Commerce Calls for National Privacy Legislation
Yet another industry group - the U.S. Chamber of Commerce - has called on Congress to pass comprehensive privacy legislation.
π΄ Fighting Back Against Pegasus, Other Advanced Mobile Malware π΄
π Read
via "Dark Reading".
Detecting infection traces from Pegasus and other APTs can be tricky, complicated by iOS and Android security features.π Read
via "Dark Reading".
Dark Reading
Fighting Back Against Pegasus, Other Advanced Mobile Malware
Detecting infection traces from Pegasus and other APTs can be tricky, complicated by iOS and Android security features.
π΄ How to Protect Your Phone from Pegasus and Other APTs π΄
π Read
via "Dark Reading".
The good news is that you can take steps to avoid advanced persistent threats. The bad news is that it might cost you iMessage. And FaceTime.π Read
via "Dark Reading".
Dark Reading
How to Protect Your Phone from Pegasus and Other APTs
The good news is that you can take steps to avoid advanced persistent threats. The bad news is that it might cost you iMessage. And FaceTime.
π΄ BlueNoroff Threat Group Targets Cryptocurrency Startups π΄
π Read
via "Dark Reading".
A series of attacks against small and medium-sized businesses has led to major cryptocurrency losses for the victims.π Read
via "Dark Reading".
Dark Reading
BlueNoroff Threat Group Targets Cryptocurrency Startups
A series of attacks against small and medium-sized businesses has led to major cryptocurrency losses for the victims.
βΌ CVE-2021-34875 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of 3DS files. Crafted data in a 3DS file can trigger a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-14827.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34879 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of J2K files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-14832.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34942 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JT files. Crafted data in a JT file can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-15041.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34874 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of 3DS files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-14736.π Read
via "National Vulnerability Database".
βΌ CVE-2021-45058 βΌ
π Read
via "National Vulnerability Database".
Adobe InDesign version 16.4 (and earlier) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious JPEG file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34882 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JP2 files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-14835.π Read
via "National Vulnerability Database".
βΌ CVE-2021-34919 βΌ
π Read
via "National Vulnerability Database".
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JP2 files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-14897.π Read
via "National Vulnerability Database".