๐ด What Happened in That Cyberattack? With Some Cloud Services, You May Never Know ๐ด
๐ Read
via "Dark Reading".
More cyberattackers are targeting organizations' cloud environments, but some cloud services, such as Google Cloud Platform's storage, fail to create adequate logs for forensics.๐ Read
via "Dark Reading".
Dark Reading
What Happened in That Cyberattack? With Some Cloud Services, You May Never Know
More cyberattackers are targeting organizations' cloud environments, but some cloud services, such as Google Cloud Platform's storage, fail to create adequate logs for forensics.
โผ CVE-2023-0460 โผ
๐ Read
via "National Vulnerability Database".
The YouTube Embedded 1.2 SDK binds to a service within the YouTube Main App. After binding, a remote context is created with the flags Context.CONTEXT_INCLUDE_CODE | Context.CONTEXT_IGNORE_SECURITY. This allows the client app to remotely load code from YouTube Main App by retrieving the Main Appรขโฌโขs ClassLoader. A potential vulnerability in the binding logic used by the client SDK where the SDK ends up calling bindService() on a malicious app rather than YT Main App. This creates a vulnerability where the SDK can load the malicious appรขโฌโขs ClassLoader instead, allowing the malicious app to load arbitrary code into the calling app whenever the embedded SDK is invoked. In order to trigger this vulnerability, an attacker must masquerade the Youtube app and install it on a device, have a second app that uses the Embedded player and typically distribute both to the victim outside of the Play Store.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-39228 โผ
๐ Read
via "National Vulnerability Database".
vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. vantage6 does not inform the user of wrong username/password combination if the username actually exists. This is an attempt to prevent bots from obtaining usernames. However, if a wrong password is entered a number of times, the user account is blocked temporarily. This issue has been fixed in version 3.8.0.๐ Read
via "National Vulnerability Database".
๐ด Linux Support Expands Cyber Spy Group's Arsenal ๐ด
๐ Read
via "Dark Reading".
An infamous Chinese cyber-hacking team has extended its SysUpdate malware framework to target Linux systems.๐ Read
via "Dark Reading".
Dark Reading
Linux Support Expands Cyber Spy Group's Arsenal
An infamous Chinese cyber-hacking team has extended its SysUpdate malware framework to target Linux systems.
๐ด Offensive Security Is Now OffSec - Refresh Reflects Future of Cybersecurity Learning and Skills Development ๐ด
๐ Read
via "Dark Reading".
Updated OffSecโข identity substantiates the company's commitment to expanding its cybersecurity content and resources to prepare infosec professionals for the future.๐ Read
via "Dark Reading".
Dark Reading
Offensive Security Is Now OffSec - Refresh Reflects Future of Cybersecurity Learning and Skills Development
Updated OffSecโข identity substantiates the company's commitment to expanding its cybersecurity content and resources to prepare infosec professionals for the future.
โผ CVE-2023-23005 โผ
๐ Read
via "National Vulnerability Database".
In the Linux kernel before 6.2, mm/memory-tiers.c misinterprets the alloc_memory_type return value (expects it to be NULL in the error case, whereas it is actually an error pointer).๐ Read
via "National Vulnerability Database".
โผ CVE-2023-23006 โผ
๐ Read
via "National Vulnerability Database".
In the Linux kernel before 5.15.13, drivers/net/ethernet/mellanox/mlx5/core/steering/dr_domain.c misinterprets the mlx5_get_uars_page return value (expects it to be NULL in the error case, whereas it is actually an error pointer).๐ Read
via "National Vulnerability Database".
โผ CVE-2023-23003 โผ
๐ Read
via "National Vulnerability Database".
In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return value.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-25931 โผ
๐ Read
via "National Vulnerability Database".
Medtronic identified that the Pelvic Health clinician apps, which are installed on the Smart Programmer mobile device, have a password vulnerability that requires a security update to fix. Not updating could potentially result in unauthorized control of the clinician therapy application, which has greater control over therapy parameters than the patient app. Changes still cannot be made outside of the established therapy parameters of the programmer. For unauthorized access to occur, an individual would need physical access to the Smart Programmer.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-4901 โผ
๐ Read
via "National Vulnerability Database".
Multiple stored XSS vulnerabilities in Sophos Connect versions older than 2.2.90 allow Javascript code to run in the local UI via a malicious VPN configuration that must be manually loaded by the victim.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-24133 โผ
๐ Read
via "National Vulnerability Database".
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a stack overflow via the wepkey_5g parameter at /goform/WifiBasicSet.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-23000 โผ
๐ Read
via "National Vulnerability Database".
In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error case, but an error pointer is used.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-24129 โผ
๐ Read
via "National Vulnerability Database".
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a stack overflow via the wepkey4 parameter at /goform/WifiBasicSet.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-24134 โผ
๐ Read
via "National Vulnerability Database".
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-1130 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability, which was classified as critical, was found in SourceCodester Computer Parts Sales and Inventory System 1.0. This affects an unknown part of the file processlogin. The manipulation of the argument user leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222105 was assigned to this vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-1131 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability has been found in SourceCodester Computer Parts Sales and Inventory System 1.0 and classified as problematic. This vulnerability affects unknown code of the file customer.php. The manipulation of the argument FIRST_NAME/LAST_NAME/PHONE_NUMBER leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-222106 is the identifier assigned to this vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-24131 โผ
๐ Read
via "National Vulnerability Database".
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a stack overflow via the wepkey1_5g parameter at /goform/WifiBasicSet.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-48309 โผ
๐ Read
via "National Vulnerability Database".
A CSRF vulnerability allows malicious websites to retrieve logs and technical support archives in Sophos Connect versions older than 2.2.90.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-48310 โผ
๐ Read
via "National Vulnerability Database".
An information disclosure vulnerability allows sensitive key material to be included in technical support archives in Sophos Connect versions older than 2.2.90.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-3162 โผ
๐ Read
via "National Vulnerability Database".
Users authorized to list or watch one type of namespaced custom resource cluster-wide can read custom resources of a different type in the same API group without authorization. Clusters are impacted by this vulnerability if all of the following are true: 1. There are 2+ CustomResourceDefinitions sharing the same API group 2. Users have cluster-wide list or watch authorization on one of those custom resources. 3. The same users are not authorized to read another custom resource in the same API group.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-24130 โผ
๐ Read
via "National Vulnerability Database".
Jensen of Scandinavia Eagle 1200AC V15.03.06.33_en was discovered to contain a stack overflow via the wepkey parameter at /goform/WifiBasicSet.๐ Read
via "National Vulnerability Database".