βΌ CVE-2022-27812 βΌ
π Read
via "National Vulnerability Database".
Flooding SNS firewall 3.7.0 to 3.7.26 with udp or icmp randomizing the source through an internal to internal or external to internal interfaces will lead the firewall to overwork. It will consume 100% CPU, 100 RAM and won't be available and can crash.π Read
via "National Vulnerability Database".
π1
β Twitter Whistleblower Complaint: The TL;DR Version β
π Read
via "Threat Post".
Twitter is blasted for security and privacy lapses by the companyβs former head of security who alleges the social media giantβs actions amount to a national security risk.π Read
via "Threat Post".
Threat Post
Twitter Whistleblower Complaint: The TL;DR Version
Twitter is blasted for security and privacy lapses by the companyβs former head of security who alleges the social media giantβs actions amount to a national security risk.
βΌ CVE-2021-0887 βΌ
π Read
via "National Vulnerability Database".
In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-236848817π Read
via "National Vulnerability Database".
βΌ CVE-2021-0891 βΌ
π Read
via "National Vulnerability Database".
An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490π Read
via "National Vulnerability Database".
βΌ CVE-2021-0946 βΌ
π Read
via "National Vulnerability Database".
The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameInt on the heap, fills the contents of the buffer via PMR_PDumpSymbolicAddr, and then copies the buffer to userspace. The method PMR_PDumpSymbolicAddr may fail, and if it does the buffer will be left uninitialized and despite the error will still be copied to userspace. Kernel leak of uninitialized heap data with no privs required.Product: AndroidVersions: Android SoCAndroid ID: A-236846966π Read
via "National Vulnerability Database".
βΌ CVE-2021-0698 βΌ
π Read
via "National Vulnerability Database".
In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-236848165π Read
via "National Vulnerability Database".
βΌ CVE-2022-20122 βΌ
π Read
via "National Vulnerability Database".
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes it available to be freed), and continue using the page in GPU calls. No privileges required and this results in kernel memory corruption.Product: AndroidVersions: Android SoCAndroid ID: A-232441339π Read
via "National Vulnerability Database".
βΌ CVE-2021-39815 βΌ
π Read
via "National Vulnerability Database".
The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes it available to be freed), and continue using the page in GPU calls. No privileges required and this results in kernel memory corruption.Product: AndroidVersions: Android SoCAndroid ID: A-232440670π Read
via "National Vulnerability Database".
βΌ CVE-2021-0947 βΌ
π Read
via "National Vulnerability Database".
The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt on the heap, fills the contents of the buffer via TLServerDiscoverStreamsKM, and then copies the buffer to userspace. The method TLServerDiscoverStreamsKM may fail for several reasons including invalid sizes. If this method fails the buffer will be left uninitialized and despite the error will still be copied to userspace. Kernel leak of uninitialized heap data with no privs required.Product: AndroidVersions: Android SoCAndroid ID: A-236838960π Read
via "National Vulnerability Database".
β Bitcoin ATMs leeched by attackers who created fake admin accounts β
π Read
via "Naked Security".
The criminals didn't implant any malware. The attack was orchestrated via malevolent configuration changes.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β Breaching airgap security: using your phoneβs compass as a microphone! β
π Read
via "Naked Security".
One bit per second makes the Voyager probe data rate seem blindingly fast. But it's enough to break your security assumptions...π Read
via "Naked Security".
Naked Security
Breaching airgap security: using your phoneβs gyroscope as a microphone
One bit per second makes the Voyager probe data rate seem blindingly fast. But itβs enough to break your security assumptionsβ¦
π΄ VMware LPE Bug Allows Cyberattackers to Feast on Virtual Machine Data π΄
π Read
via "Dark Reading".
An insider threat or remote attacker with initial access could exploit CVE-2022-31676 to steal sensitive data and scoop up user credentials for follow-on attacks.π Read
via "Dark Reading".
Dark Reading
VMware LPE Bug Allows Cyberattackers to Feast on Virtual Machine Data
An insider threat or remote attacker with initial access could exploit CVE-2022-31676 to steal sensitive data and scoop up user credentials for follow-on attacks.
βΌ CVE-2021-4209 βΌ
π Read
via "National Vulnerability Database".
A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4204 βΌ
π Read
via "National Vulnerability Database".
An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allows a local attacker with a special privilege to crash the system or leak internal information.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4158 βΌ
π Read
via "National Vulnerability Database".
A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3488 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4122 βΌ
π Read
via "National Vulnerability Database".
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryption layer of that medium.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3998 βΌ
π Read
via "National Vulnerability Database".
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value, potentially leading to information leakage and disclosure of sensitive data.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4125 βΌ
π Read
via "National Vulnerability Database".
It was found that the original fix for log4j CVE-2021-44228 and CVE-2021-45046 in the OpenShift metering hive containers was incomplete, as not all JndiLookup.class files were removed. This CVE only applies to the OpenShift Metering hive container images, shipped in OpenShift 4.8, 4.7 and 4.6.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4189 βΌ
π Read
via "National Vulnerability Database".
A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead to FTP client scanning ports, which otherwise would not have been possible.π Read
via "National Vulnerability Database".
βΌ CVE-2021-4159 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel.π Read
via "National Vulnerability Database".