π’ Bus and rail operator Go-Ahead Group confirms "cyber security incident" π’
π Read
via "ITPro".
The public transport giant has been tight-lipped on the nature of the supposed attack but has tasked IBM with helping it recoverπ Read
via "ITPro".
IT PRO
Bus and rail operator Go-Ahead Group confirms "cyber security incident" | IT PRO
The public transport giant has been tight-lipped on the nature of the supposed attack but has tasked IBM with helping it recover
π’ QNAP fixes zero-day vulnerability following Deadbolt ransomware attack π’
π Read
via "ITPro".
The occurrence of the attack is the fourth in this year's Deadbolt attack seriesπ Read
via "ITPro".
ITPro
QNAP fixes zero-day vulnerability following Deadbolt ransomware attack
The occurrence of the attack is the fourth in this year's Deadbolt attack series
π’ Samsung confirms it was hit by a data breach π’
π Read
via "ITPro".
The security incident exposed customersβ personally identifiable informationπ Read
via "ITPro".
IT PRO
Samsung confirms it was hit by a data breach | IT PRO
The security incident exposed customersβ personally identifiable information
π€―2π±1
βΌ CVE-2022-25914 βΌ
π Read
via "National Vulnerability Database".
The package com.google.cloud.tools:jib-core before 0.22.0 are vulnerable to Remote Code Execution (RCE) via the isDockerInstalled function, due to attempting to execute input.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38394 βΌ
π Read
via "National Vulnerability Database".
Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command.π Read
via "National Vulnerability Database".
βΌ CVE-2022-25897 βΌ
π Read
via "National Vulnerability Database".
The package org.eclipse.milo:sdk-server before 0.6.8 are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.π Read
via "National Vulnerability Database".
βΌ CVE-2022-28220 βΌ
π Read
via "National Vulnerability Database".
Apache James prior to release 3.6.3 and 3.7.1 is vulnerable to a buffering attack relying on the use of the STARTTLS command. Fix of CVE-2021-38542, which solved similar problem fron Apache James 3.6.1, is subject to a parser differential and do not take into account concurrent requests.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38400 βΌ
π Read
via "National Vulnerability Database".
Mailform Pro CGI 4.3.1 and earlier allow a remote unauthenticated attacker to obtain the user input data by having a use of the product to access a specially crafted URL.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38399 βΌ
π Read
via "National Vulnerability Database".
Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connectionπ Read
via "National Vulnerability Database".
βΌ CVE-2022-34869 βΌ
π Read
via "National Vulnerability Database".
Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38094 βΌ
π Read
via "National Vulnerability Database".
OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.π Read
via "National Vulnerability Database".
βΌ CVE-2022-36403 βΌ
π Read
via "National Vulnerability Database".
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.π Read
via "National Vulnerability Database".
βΌ CVE-2022-33941 βΌ
π Read
via "National Vulnerability Database".
PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability. Sending a specially crafted message by POST method to PowerCMS XMLRPC API may allow arbitrary Perl script execution, and an arbitrary OS command may be executed through it. Affected products/versions are as follows: PowerCMS 6.021 and earlier (PowerCMS 6 Series), PowerCMS 5.21 and earlier (PowerCMS 5 Series), and PowerCMS 4.51 and earlier (PowerCMS 4 Series). Note that all versions of PowerCMS 3 Series and earlier which are unsupported (End-of-Life, EOL) are also affected by this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35273 βΌ
π Read
via "National Vulnerability Database".
OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.π Read
via "National Vulnerability Database".
βΌ CVE-2022-3148 βΌ
π Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio prior to 20.3.0.π Read
via "National Vulnerability Database".
βΌ CVE-2022-3138 βΌ
π Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio prior to 20.3.0.π Read
via "National Vulnerability Database".
βΌ CVE-2022-27593 βΌ
π Read
via "National Vulnerability Database".
An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, This could allow an attacker to modify system files. We have already fixed the vulnerability in the following versions: QTS 5.0.1: Photo Station 6.1.2 and later QTS 5.0.0/4.5.x: Photo Station 6.0.22 and later QTS 4.3.6: Photo Station 5.7.18 and later QTS 4.3.3: Photo Station 5.4.15 and later QTS 4.2.6: Photo Station 5.2.14 and laterπ Read
via "National Vulnerability Database".
β S3 Ep99: TikTok βattackβ β was there a data breach, or not? [Audio + Text] β
π Read
via "Naked Security".
Latest episode - listen now! (Or read if you prefer - full transcript inside.)π Read
via "Naked Security".
Naked Security
S3 Ep99: TikTok βattackβ β was there a data breach, or not? [Audio + Text]
Latest episode β listen now! (Or read if you prefer β full transcript inside.)
π1
ποΈ WordPress warning: 140k BackupBuddy installations on alert over file-read exploitation ποΈ
π Read
via "The Daily Swig".
Site backup plugin developer issues patch following reports of millions of exploit attemptsπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
WordPress warning: 140k BackupBuddy installations on alert over file-read exploitation
Site backup plugin developer issues patch following reports of millions of exploit attempts
βΌ CVE-2022-20923 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the IPSec VPN Server authentication functionality of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to bypass authentication controls and access the IPSec VPN network. This vulnerability is due to the improper implementation of the password validation algorithm. An attacker could exploit this vulnerability by logging in to the VPN from an affected device with crafted credentials. A successful exploit could allow the attacker to bypass authentication and access the IPSec VPN network. The attacker may obtain privileges that are the same level as an administrative user, depending on the crafted credentials that are used. Cisco has not released software updates that address this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-20863 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in the messaging interface of Cisco Webex App, formerly Webex Teams, could allow an unauthenticated, remote attacker to manipulate links or other content within the messaging interface. This vulnerability exists because the affected software does not properly handle character rendering. An attacker could exploit this vulnerability by sending messages within the application interface. A successful exploit could allow the attacker to modify the display of links or other content within the interface, potentially allowing the attacker to conduct phishing or spoofing attacks.π Read
via "National Vulnerability Database".