βΌ CVE-2020-27602 βΌ
π Read
via "National Vulnerability Database".
BigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId, userId, and authToken.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20320 βΌ
π Read
via "National Vulnerability Database".
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20253 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2020-15334 βΌ
π Read
via "National Vulnerability Database".
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows escape-sequence injection into the /var/log/axxmpp.log file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40694 βΌ
π Read
via "National Vulnerability Database".
Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20237 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2022-1725 βΌ
π Read
via "National Vulnerability Database".
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20295 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20251 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20272 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20280 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2019-20283 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none.π Read
via "National Vulnerability Database".
β Optus breach β Aussie telco told it will have to pay to replace IDs β
π Read
via "Naked Security".
Licence compromised? Passport number burned? Need a new one? Who's going to pay?π Read
via "Naked Security".
Naked Security
Optus breach β Aussie telco told it will have to pay to replace IDs
Licence compromised? Passport number burned? Need a new one? Whoβs going to pay?
π΄ What Lurks in the Shadows of Cloud Security? π΄
π Read
via "Dark Reading".
Organizations looking to get ahead in cloud security have gone down the path of deploying CSPM tooling with good results. Still, thereβs a clear picture that data security and security operations are next key areas of interest.π Read
via "Dark Reading".
Darkreading
What Lurks in the Shadows of Cloud Security?
Organizations looking to get ahead in cloud security have gone down the path of deploying CSPM tooling with good results. Still, thereβs a clear picture that data security and security operations are next key areas of interest.
ποΈ Patching common vulnerabilities at scale: project promises bulk pull requests ποΈ
π Read
via "The Daily Swig".
Automating bulk pull request generation FTWπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Patching common vulnerabilities at scale: project promises bulk pull requests
Automating bulk pull request generation FTW
π΄ XSS Flaw in Prevalent Media Imaging Tool Exposes Trove of Patient Data π΄
π Read
via "Dark Reading".
Bugs in Canon Medical's Virea View could allow cyberattackers to access several sources of sensitive patient data.π Read
via "Dark Reading".
Darkreading
XSS Flaw in Prevalent Media Imaging Tool Exposes Trove of Patient Data
Bugs in Canon Medical's Virea View could allow cyberattackers to access several sources of sensitive patient data.
π΄ Why the US Should Help Secure Mexican Infrastructure β and What It Gets in Return π΄
π Read
via "Dark Reading".
Call it cross-border enlightened self-interest: As one of the US's premier trade partners and closest neighbors, what's bad for Mexico is bad for the US.π Read
via "Dark Reading".
Darkreading
Why the US Should Help Secure Mexican Infrastructure β and What It Gets in Return
Call it cross-border enlightened self-interest: As one of the US's premier trade partners and closest neighbors, what's bad for Mexico is bad for the US.
π1
βΌ CVE-2022-40890 βΌ
π Read
via "National Vulnerability Database".
A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40475 βΌ
π Read
via "National Vulnerability Database".
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection via the component /cgi-bin/downloadFile.cgi.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40363 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow in the component nfc_device_load_mifare_ul_data of Flipper Devices Inc., Flipper Zero before v0.65.2 allows attackers to cause a Denial of Service (DoS) via a crafted NFC file.π Read
via "National Vulnerability Database".
βΌ CVE-2022-3352 βΌ
π Read
via "National Vulnerability Database".
Use After Free in GitHub repository vim/vim prior to 9.0.0614.π Read
via "National Vulnerability Database".