βΌ CVE-2022-3029 βΌ
π Read
via "National Vulnerability Database".
In NLnet Labs Routinator 0.9.0 up to and including 0.11.2, due to a mistake in error handling, data in RRDP snapshot and delta files that isnΓΒ’Γ’β¬ÒβΒ’t correctly base 64 encoded is treated as a fatal error and causes Routinator to exit. Worst case impact of this vulnerability is denial of service for the RPKI data that Routinator provides to routers. This may stop your network from validating route origins based on RPKI data. This vulnerability does not allow an attacker to manipulate RPKI data.π Read
via "National Vulnerability Database".
π΄ Cyberattackers Abuse Facebook Ad Manager in Savvy Credential-Harvesting Campaign π΄
π Read
via "Dark Reading".
Facebook lead-generation forms are being repurposed to collect passwords and credit card information from unsuspecting Facebook advertisers.π Read
via "Dark Reading".
Dark Reading
Cyberattackers Abuse Facebook Ad Manager in Savvy Credential-Harvesting Campaign
Facebook lead-generation forms are being repurposed to collect passwords and credit card information from unsuspecting Facebook advertisers.
π΄ U-Haul Customer Contract Search Tool Compromised π΄
π Read
via "Dark Reading".
Password compromise led to unauthorized access to a customer contract search tool over a five-month window, according to the company.π Read
via "Dark Reading".
Dark Reading
U-Haul Customer Contract Search Tool Compromised
Password compromise led to unauthorized access to a customer contract search tool over a five-month window, according to the company.
π΄ ShadowPad Threat Actors Return With Fresh Government Strikes, Updated Tools π΄
π Read
via "Dark Reading".
Cyber spies are using legitimate apps for DLL sideloading, deploying an updated range of malware, including the new "Logdatter" info-stealer.π Read
via "Dark Reading".
Dark Reading
ShadowPad Threat Actors Return With Fresh Government Strikes, Updated Tools
Cyber spies are using legitimate apps for DLL sideloading, deploying an updated range of malware, including the new "Logdatter" info-stealer.
βΌ CVE-2022-26929 βΌ
π Read
via "National Vulnerability Database".
.NET Framework Remote Code Execution Vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35830 βΌ
π Read
via "National Vulnerability Database".
Remote Procedure Call Runtime Remote Code Execution Vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-34722 βΌ
π Read
via "National Vulnerability Database".
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34721.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35835 βΌ
π Read
via "National Vulnerability Database".
Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35836, CVE-2022-35840.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35832 βΌ
π Read
via "National Vulnerability Database".
Windows Event Tracing Denial of Service Vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-34732 βΌ
π Read
via "National Vulnerability Database".
Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34734.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35803 βΌ
π Read
via "National Vulnerability Database".
Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37969.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35834 βΌ
π Read
via "National Vulnerability Database".
Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.π Read
via "National Vulnerability Database".
βΌ CVE-2022-30196 βΌ
π Read
via "National Vulnerability Database".
Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-35833.π Read
via "National Vulnerability Database".
βΌ CVE-2022-33679 βΌ
π Read
via "National Vulnerability Database".
Windows Kerberos Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-33647.π Read
via "National Vulnerability Database".
βΌ CVE-2022-34730 βΌ
π Read
via "National Vulnerability Database".
Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34732, CVE-2022-34734.π Read
via "National Vulnerability Database".
βΌ CVE-2022-34726 βΌ
π Read
via "National Vulnerability Database".
Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34727, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35836 βΌ
π Read
via "National Vulnerability Database".
Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35840.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35833 βΌ
π Read
via "National Vulnerability Database".
Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-30196.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35838 βΌ
π Read
via "National Vulnerability Database".
HTTP V3 Denial of Service Vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-37956 βΌ
π Read
via "National Vulnerability Database".
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37957, CVE-2022-37964.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35841 βΌ
π Read
via "National Vulnerability Database".
Windows Enterprise App Management Service Remote Code Execution Vulnerability.π Read
via "National Vulnerability Database".