βΌ CVE-2022-1665 βΌ
π Read
via "National Vulnerability Database".
A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These kernel builds don't have the secure boot lockdown patches applied to it and can bypass the secure boot validations, allowing the attacker to load another non-trusted code.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31478 βΌ
π Read
via "National Vulnerability Database".
The UserTakeOver plugin before 4.0.1 for ILIAS allows an attacker to list all users via the search function.π Read
via "National Vulnerability Database".
βΌ CVE-2022-33995 βΌ
π Read
via "National Vulnerability Database".
A path traversal issue in entry attachments in Devolutions Remote Desktop Manager before 2022.2 allows attackers to create or overwrite files in an arbitrary location.π Read
via "National Vulnerability Database".
βΌ CVE-2022-33056 βΌ
π Read
via "National Vulnerability Database".
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /orrs/admin/schedules/manage_schedule.php.π Read
via "National Vulnerability Database".
βΌ CVE-2022-34008 βΌ
π Read
via "National Vulnerability Database".
Comodo Antivirus 12.2.2.8012 has a quarantine flaw that allows privilege escalation. To escalate privilege, a low-privileged attacker can use an NTFS directory junction to restore a malicious DLL from quarantine into the System32 folder.π Read
via "National Vulnerability Database".
βΌ CVE-2022-2068 βΌ
π Read
via "National Vulnerability Database".
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze).π Read
via "National Vulnerability Database".
ποΈ Single largest disclosure for vulnerabilities in industrial control security reveals 56 flaws ποΈ
π Read
via "The Daily Swig".
Scores of security issues in industrial control systems unveiledπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Single largest disclosure for vulnerabilities in industrial control security reveals 56 flaws
Scores of security issues in industrial control systems unveiled
π΄ Why Financial Institutions Must Double Down on Open Source Investments π΄
π Read
via "Dark Reading".
Open source is here to stay, and it's imperative that CIOs have a mature, open source engagement strategy, across consumption, contribution, and funding as a pillar of digital transformation.π Read
via "Dark Reading".
Dark Reading
Why Financial Institutions Must Double Down on Open Source Investments
Open source is here to stay, and it's imperative that CIOs have a mature, open source engagement strategy, across consumption, contribution, and funding as a pillar of digital transformation.
βΌ CVE-2021-40511 βΌ
π Read
via "National Vulnerability Database".
OBDA systemsΓ’β¬β’ Mastro 1.0 is vulnerable to XML Entity Expansion (aka Γ’β¬Εbillion laughsΓ’β¬οΏ½) attack allowing denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36761 βΌ
π Read
via "National Vulnerability Database".
The GeoAnalytics feature in Qlik Sense April 2020 patch 4 allows SSRF.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40510 βΌ
π Read
via "National Vulnerability Database".
XML eXternal Entity (XXE) in OBDA systemsΓ’β¬β’ Mastro 1.0 allows remote attackers to read system files via custom DTDs.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39006 βΌ
π Read
via "National Vulnerability Database".
IBM QRadar WinCollect Agent 10.0 and 10.0.1 could allow an attacker to obtain sensitive information due to missing best practices. IBM X-Force ID: 213549.π Read
via "National Vulnerability Database".
π΄ Gartner: Regulation, Human Costs Will Create Stormy Cybersecurity Weather Ahead π΄
π Read
via "Dark Reading".
Experts tell teams to prepare for more regulation, platform consolidation, management scrutiny, and attackers with the ability to claim human casualties.π Read
via "Dark Reading".
Dark Reading
Gartner: Regulation, Human Costs Will Create Stormy Cybersecurity Weather Ahead
Experts tell teams to prepare for more regulation, platform consolidation, management scrutiny, and attackers with the ability to claim human casualties.
βΌ CVE-2022-31095 βΌ
π Read
via "National Vulnerability Database".
discourse-chat is a chat plugin for the Discourse application. Versions prior to 0.4 are vulnerable to an exposure of sensitive information, where an attacker who knows the message ID for a channel they do not have access to can view that message using the chat message lookup endpoint, primarily affecting direct message channels. There are no known workarounds for this issue, and users are advised to update the plugin.π Read
via "National Vulnerability Database".
π΄ RIG Exploit Kit Replaces Raccoon Stealer Trojan With Dridex π΄
π Read
via "Dark Reading".
After the Raccoon Stealer Trojan disappeared, the RIG Exploit Kit seamlessly adopted Dridex for credential theft.π Read
via "Dark Reading".
Dark Reading
RIG Exploit Kit Replaces Raccoon Stealer Trojan With Dridex
After the Raccoon Stealer Trojan disappeared, the RIG Exploit Kit seamlessly adopted Dridex for credential theft.
π΄ China-Linked ToddyCat APT Pioneers Novel Spyware π΄
π Read
via "Dark Reading".
ToddyCat's Samurai and Ninja tools are designed to give attackers persistent and deep access on compromised networks, security vendor says.π Read
via "Dark Reading".
Dark Reading
China-Linked ToddyCat APT Pioneers Novel Spyware
ToddyCat's Samurai and Ninja tools are designed to give attackers persistent and deep access on compromised networks, security vendor says.
π΄ VPNs Persist Despite Zero-Trust Fervor π΄
π Read
via "Dark Reading".
Most organizations still rely on virtual private networks for secure remote access.π Read
via "Dark Reading".
Dark Reading
VPNs Persist Despite Zero-Trust Fervor
Most organizations still rely on virtual private networks for secure remote access.
π΄ 7 Ways to Avoid Worst-Case Cyber Scenarios π΄
π Read
via "Dark Reading".
In the wake of devastating attacks, here are some of the best techniques and policies a company can implement to protect its data.π Read
via "Dark Reading".
Dark Reading
7 Ways to Avoid Worst-Case Cyber Scenarios
In the wake of devastating attacks, here are some of the best techniques and policies a company can implement to protect its data.
π΄ Linux Foundation Announces Open Programmable Infrastructure Project to Drive Open Standards for New Class of Cloud Native Infrastructure π΄
π Read
via "Dark Reading".
Data Processing and Infrastructure Processing Units β DPU and IPU β are changing the way enterprises deploy and manage compute resources across their networks.π Read
via "Dark Reading".
Dark Reading
Linux Foundation Announces Open Programmable Infrastructure Project to Drive Open Standards for New Class of Cloud Native Infrastructure
Data Processing and Infrastructure Processing Units β DPU and IPU β are changing the way enterprises deploy and manage compute resources across their networks.
βΌ CVE-2022-21952 βΌ
π Read
via "National Vulnerability Database".
An Uncontrolled Resource Consumption vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to easily exhaust available disk resources leading to DoS. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46. SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31248 βΌ
π Read
via "National Vulnerability Database".
A Observable Response Discrepancy vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to discover valid usernames. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46-1. SUSE Manager Server 4.2 spacewalk-java versions prior to 4.2.37-1.π Read
via "National Vulnerability Database".