βΌ CVE-2021-41239 βΌ
π Read
via "National Vulnerability Database".
Nextcloud server is a self hosted system designed to provide cloud style services. In affected versions the User Status API did not consider the user enumeration settings by the administrator. This allowed a user to enumerate other users on the instance, even when user listings where disabled. It is recommended that the Nextcloud Server is upgraded to 20.0.14, 21.0.6 or 22.2.1. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41181 βΌ
π Read
via "National Vulnerability Database".
Nextcloud talk is a self hosting messaging service. In versions prior to 12.3.0 the Nextcloud Android Talk application did not properly detect the lockscreen state when a call was incoming. If an attacker got physical access to the locked phone, and the victim received a phone call the attacker could gain access to the chat messages and files of the user. It is recommended that the Nextcloud Android Talk App is upgraded to 12.3.0. There are no known workarounds.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41180 βΌ
π Read
via "National Vulnerability Database".
Nextcloud talk is a self hosting messaging service. In versions prior 12.1.2 an attacker is able to control the link of a geolocation preview in the Nextcloud Talk application due to a lack of validation on the link. This could result in an open-redirect, but required user interaction. This only affected users of the Android Talk client. It is recommended that the Nextcloud Talk App is upgraded to 12.1.2. There are no known workarounds.π Read
via "National Vulnerability Database".
π’ Improve security and compliance π’
π Read
via "ITPro".
Adopting an effective security and compliance risk management approachπ Read
via "ITPro".
IT PRO
Improve security and compliance
Adopting an effective security and compliance risk management approach
π’ Microsoft suspends sales in Russia amid mass tech boycott π’
π Read
via "ITPro".
Russia is also limiting its citizensβ access to apps that are in any way supporting Ukraineπ Read
via "ITPro".
ITPro
Microsoft suspends sales in Russia amid mass tech boycott
Russia is also limiting its citizensβ access to apps that are in any way supporting Ukraine
π’ Vulnerability hunters are cut from a different cloth β theyβre naturally inquisitive π’
π Read
via "ITPro".
So, you want to be a hacker? We share the best advice and resources for getting startedπ Read
via "ITPro".
IT PRO
Vulnerability hunters are cut from a different cloth β theyβre naturally inquisitive | IT PRO
So, you want to be a hacker? We share the best advice and resources for getting started
π’ Nvidia hackers leak 190GB of data allegedly stolen from Samsung π’
π Read
via "ITPro".
The LAPSUS$ hacking group claims to have breached the tech giant to steal internal data and source codeπ Read
via "ITPro".
IT PRO
Nvidia hackers leak 190GB of data allegedly stolen from Samsung | IT PRO
The LAPSUS$ hacking group claims to have breached the tech giant to steal internal data and source code
π’ Mozilla patches two Firefox zero-day vulnerabilities π’
π Read
via "ITPro".
Memory bugs fixed in Firefox desktop and mobile browsers along with Mozilla's Thunderbird clientπ Read
via "ITPro".
ITPro
Mozilla patches two Firefox zero-day vulnerabilities
Memory bugs fixed in Firefox desktop and mobile browsers along with Mozilla's Thunderbird client
π’ Anonymous hijacks Russian broadcasts with footage of Ukraine war π’
π Read
via "ITPro".
The hacking group said it managed to manipulate the broadcasts of three major Russian state-backed media organisationsπ Read
via "ITPro".
IT PRO
Anonymous hijacks Russian broadcasts with footage of Ukraine war | IT PRO
The hacking group said it managed to manipulate the broadcasts of three major Russian state-backed media organisations
π’ Leaked Nvidia certificates used to sign malware bypassing Windows detection π’
π Read
via "ITPro".
Windows admins are advised to implement custom policies to avoid seemingly legitimate malware making its way into corporate environmentsπ Read
via "ITPro".
IT PRO
Leaked Nvidia certificates used to sign malware bypassing Windows detection | IT PRO
Windows admins are advised to implement custom policies to avoid seemingly legitimate malware making its way into corporate environments
π΄ Even 'Perfect' APIs Can be Abused π΄
π Read
via "Dark Reading".
Broad-scale API abuse is occurring every day as businesses make their data available to trading partners β and even the public.π Read
via "Dark Reading".
Dark Reading
Even 'Perfect' APIs Can be Abused
Broad-scale API abuse is occurring every day as businesses make their data available to trading partners β and even the public.
βΌ CVE-2022-24713 βΌ
π Read
via "National Vulnerability Database".
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane defaults to prevent attacks. This guarantee is documented and it's considered part of the crate's API. Unfortunately a bug was discovered in the mitigations designed to prevent untrusted regexes to take an arbitrary amount of time during parsing, and it's possible to craft regexes that bypass such mitigations. This makes it possible to perform denial of service attacks by sending specially crafted regexes to services accepting user-controlled, untrusted regexes. All versions of the regex crate before or equal to 1.5.4 are affected by this issue. The fix is include starting from regex 1.5.5. All users accepting user-controlled regexes are recommended to upgrade immediately to the latest version of the regex crate. Unfortunately there is no fixed set of problematic regexes, as there are practically infinite regexes that could be crafted to exploit this vulnerability. Because of this, it us not recommend to deny known problematic regexes.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24715 βΌ
π Read
via "National Vulnerability Database".
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Authenticated users, with access to the configuration, can create SSH resource files in unintended directories, leading to the execution of arbitrary code. This issue has been resolved in versions 2.8.6, 2.9.6 and 2.10 of Icinga Web 2. Users unable to upgrade should limit access to the Icinga Web 2 configuration.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41241 βΌ
π Read
via "National Vulnerability Database".
Nextcloud server is a self hosted system designed to provide cloud style services. The groupfolders application for Nextcloud allows sharing a folder with a group of people. In addition, it allows setting "advanced permissions" on subfolders, for example, a user could be granted access to the groupfolder but not specific subfolders. Due to a lacking permission check in affected versions, a user could still access these subfolders by copying the groupfolder to another location. It is recommended that the Nextcloud Server is upgraded to 20.0.14, 21.0.6 or 22.2.1. Users unable to upgrade should disable the "groupfolders" application in the admin settings.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24716 βΌ
π Read
via "National Vulnerability Database".
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Unauthenticated users can leak the contents of files of the local system accessible to the web-server user, including `icingaweb2` configuration files with database credentials. This issue has been resolved in versions 2.9.6 and 2.10 of Icinga Web 2. Database credentials should be rotated.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24714 βΌ
π Read
via "National Vulnerability Database".
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Installations of Icinga 2 with the IDO writer enabled are affected. If you use service custom variables in role restrictions, and you regularly decommission service objects, users with said roles may still have access to a collection of content. Note that this only applies if a role has implicitly permitted access to hosts, due to permitted access to at least one of their services. If access to a host is permitted by other means, no sensible information has been disclosed to unauthorized users. This issue has been resolved in versions 2.8.6, 2.9.6 and 2.10 of Icinga Web 2.π Read
via "National Vulnerability Database".
β Microsoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch Tuesday β
π Read
via "Threat Post".
The computing giant patched 71 security vulnerabilities in an uncharacteristically light scheduled update, including its first Xbox bug.π Read
via "Threat Post".
Threat Post
Microsoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch Tuesday
The computing giant patched 71 security vulnerabilities in an uncharacteristically light scheduled update, including its first Xbox bug.
π1
π΄ Microsoft Patches Critical Exchange Server Flaw π΄
π Read
via "Dark Reading".
Remote code execution vulnerability among 71 bug fixes issued in March Patch Tuesday.π Read
via "Dark Reading".
Dark Reading
Microsoft Patches Critical Exchange Server Flaw
Remote code execution vulnerability among 71 bug fixes issued in March Patch Tuesday.
βΌ CVE-2022-26337 βΌ
π Read
via "National Vulnerability Database".
Trend Micro Password Manager (Consumer) installer version 5.0.0.1262 and below is vulnerable to an Uncontrolled Search Path Element vulnerability that could allow an attacker to use a specially crafted file to exploit the vulnerability and escalate local privileges on the affected machine.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26319 βΌ
π Read
via "National Vulnerability Database".
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local attacker to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24739 βΌ
π Read
via "National Vulnerability Database".
alltube is an html front end for youtube-dl. On releases prior to 3.0.3, an attacker could craft a special HTML page to trigger either an open redirect attack or a Server-Side Request Forgery attack (depending on how AllTube is configured). The impact is mitigated by the fact the SSRF attack is only possible when the `stream` option is enabled in the configuration. (This option is disabled by default.) 3.0.3 contains a fix for this vulnerability.π Read
via "National Vulnerability Database".