β Harmony blockchain loses nearly $100M due to hacked private keys β
π Read
via "Naked Security".
The crooks needed at least two private keys, each stored in two parts... but they got them anyway.π Read
via "Naked Security".
Naked Security
Harmony blockchain loses nearly $100M due to hacked private keys
The crooks needed at least two private keys, each stored in two parts⦠but they got them anyway.
βΌ CVE-2022-2140 βΌ
π Read
via "National Vulnerability Database".
Elcomplus SmartICS v2.3.4.0 does not neutralize user-controllable input, which allows an authenticated user to inject arbitrary code into specific parameters.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33650 βΌ
π Read
via "National Vulnerability Database".
When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers.π Read
via "National Vulnerability Database".
βΌ CVE-2022-2106 βΌ
π Read
via "National Vulnerability Database".
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33651 βΌ
π Read
via "National Vulnerability Database".
When performing the analytical operation of the DepthwiseConv2D operator, if the attribute depth_multiplier is 0, it will cause a division by 0 exception.π Read
via "National Vulnerability Database".
βΌ CVE-2013-2084 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-2069. Reason: This candidate is a reservation duplicate of CVE-2013-2069. Notes: All CVE users should reference CVE-2013-2069 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".
βΌ CVE-2022-2088 βΌ
π Read
via "National Vulnerability Database".
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33654 βΌ
π Read
via "National Vulnerability Database".
When performing the initialization operation of the Split operator, if a dimension in the input shape is 0, it will cause a division by 0 exception.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33653 βΌ
π Read
via "National Vulnerability Database".
When performing the derivation shape operation of the SpaceToBatch operator, if there is a value of 0 in the parameter block_shape element, it will cause a division by 0 exception.π Read
via "National Vulnerability Database".
βΌ CVE-2013-2216 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33648 βΌ
π Read
via "National Vulnerability Database".
When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.π Read
via "National Vulnerability Database".
βΌ CVE-2013-2180 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This CVE has been rejected as it was incorrectly assigned. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".
βΌ CVE-2022-2210 βΌ
π Read
via "National Vulnerability Database".
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33649 βΌ
π Read
via "National Vulnerability Database".
When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the input_shape, it will access data outside of bounds of input_shape which allocated from heap buffers.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33652 βΌ
π Read
via "National Vulnerability Database".
When the Reduce operator run operation is executed, if there is a value of 0 in the parameter axis_sizes element, it will cause a division by 0 exception.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33647 βΌ
π Read
via "National Vulnerability Database".
When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers.π Read
via "National Vulnerability Database".
π΄ Shadow IT Spurs 1 in 3 Cyberattacks π΄
π Read
via "Dark Reading".
Cerby platform emerges from stealth mode to let users automate security for applications outside of the standard IT purview.π Read
via "Dark Reading".
Dark Reading
Shadow IT Spurs 1 in 3 Cyberattacks
Cerby platform emerges from stealth mode to let users automate security for applications outside of the standard IT purview.
βΌ CVE-2022-31034 βΌ
π Read
via "National Vulnerability Database".
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting with v0.11.0 are vulnerable to a variety of attacks when an SSO login is initiated from the Argo CD CLI or UI. The vulnerabilities are due to the use of insufficiently random values in parameters in Oauth2/OIDC login flows. In each case, using a relatively-predictable (time-based) seed in a non-cryptographically-secure pseudo-random number generator made the parameter less random than required by the relevant spec or by general best practices. In some cases, using too short a value made the entropy even less sufficient. The attacks on login flows which are meant to be mitigated by these parameters are difficult to accomplish but can have a high impact potentially granting an attacker admin access to Argo CD. Patches for this vulnerability has been released in the following Argo CD versions: v2.4.1, v2.3.5, v2.2.10 and v2.1.16. There are no known workarounds for this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26477 βΌ
π Read
via "National Vulnerability Database".
The Security Team noticed that the termination condition of the for loop in the readExternal method is a controllable variable, which, if tampered with, may lead to CPU exhaustion. As a fix, we added an upper bound and termination condition in the read and write logic. We classify it as a "low-priority but useful improvement". SystemDS is a distributed system and needs to serialize/deserialize data but in many code paths (e.g., on Spark broadcast/shuffle or writing to sequence files) the byte stream is anyway protected by additional CRC fingerprints. In this particular case though, the number of decoders is upper-bounded by twice the number of columns, which means an attacker would need to modify two entries in the byte stream in a consistent manner. By adding these checks robustness was strictly improved with almost zero overhead. These code changes are available in versions higher than 2.2.1.π Read
via "National Vulnerability Database".
βΌ CVE-2022-28171 βΌ
π Read
via "National Vulnerability Database".
The web module in some Hikvision Hybrid SAN/Cluster Storage products have the following security vulnerability. Due to the insufficient input validation, attacker can exploit the vulnerability to execute restricted commands by sending messages with malicious commands to the affected device.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40941 βΌ
π Read
via "National Vulnerability Database".
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC. This can cause a denial of service (DOS).π Read
via "National Vulnerability Database".