🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28907 ‼

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the hosttime function in /setting/NTPSyncWithHost.

📖 Read

via "National Vulnerability Database".

160 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28901 ‼

A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882 DIR882A1_FW130B06 allows attackers to escalate privileges to root via a crafted payload.

📖 Read

via "National Vulnerability Database".

145 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29325 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addurlfilter parameter in /goform/websURLFilter.

📖 Read

via "National Vulnerability Database".

134 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28912 ‼

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUpgradeFW.

📖 Read

via "National Vulnerability Database".

130 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28913 ‼

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUploadSetting.

📖 Read

via "National Vulnerability Database".

132 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29329 ‼

D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a heap overflow via the devicename parameter in /goform/setDeviceSettings.

📖 Read

via "National Vulnerability Database".

127 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29322 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the IPADDR and nvmacaddr parameters in /goform/form2Dhcpip.

📖 Read

via "National Vulnerability Database".

127 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28910 ‼

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the devicename parameter in /setting/setDeviceName.

📖 Read

via "National Vulnerability Database".

129 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1397 ‼

API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. Full system takeover.

📖 Read

via "National Vulnerability Database".

136 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29326 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the addhostfilter parameter in /goform/websHostFilter.

📖 Read

via "National Vulnerability Database".

137 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29327 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the urladd parameter in /goform/websURLFilterAddDel.

📖 Read

via "National Vulnerability Database".

139 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28906 ‼

TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the langtype parameter in /setting/setLanguageCfg.

📖 Read

via "National Vulnerability Database".

140 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-26988 ‼

TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.

📖 Read

via "National Vulnerability Database".

149 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28915 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm.

📖 Read

via "National Vulnerability Database".

156 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29323 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the MAC parameter in /goform/editassignment.

📖 Read

via "National Vulnerability Database".

175 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29328 ‼

D-Link DAP-1330_OSS-firmware_1.00b21 was discovered to contain a stack overflow via the function checkvalidupgrade.

📖 Read

via "National Vulnerability Database".

195 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29321 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan.

📖 Read

via "National Vulnerability Database".

210 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-29324 ‼

D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the proto parameter in /goform/form2IPQoSTcAdd.

📖 Read

via "National Vulnerability Database".

244 views16:34

🛡 Cybersecurity & Privacy 🛡 - News

⚠ Colonial Pipeline facing $1,000,000 fine for poor recovery plans ⚠

How good is your cybersecurity? Are you making the same mistakes as lots of other people? Here's some real-life advice...

📖 Read

via "Naked Security".

Naked Security

Colonial Pipeline facing $1,000,000 fine for poor recovery plans

How good is your cybersecurity? Are you making the same mistakes as lots of other people? Here’s some real-life advice…

250 views17:27

🛡 Cybersecurity & Privacy 🛡 - News

🕴 Lincoln College Set to Close After Crippling Cyberattack 🕴

COVID-19 and a December 2021 cyberattack combined to put the future of Abraham Lincoln's namesake college in peril.

📖 Read

via "Dark Reading".

Darkreading

Lincoln College Set to Close After Crippling Cyberattack

COVID-19 and a December 2021 cyberattack combined to put the future of Abraham Lincoln's namesake college in peril.

247 views18:06

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2021-39024 ‼

IBM Guardium Data Encryption (GDE) 4.0.0.0 and 5.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 213862.

📖 Read

via "National Vulnerability Database".

230 views18:32

About

Blog

Apps

Platform