🛡 Cybersecurity & Privacy 🛡 - News
@cibsecurity
25.8K subscribers
89.2K links
🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
🛡 Cybersecurity & Privacy 🛡 - News
25.8K subscribers
🛡 Cybersecurity & Privacy 🛡 - News
🕴 Microsoft Azure Shared Key Misconfiguration Could Lead to RCE 🕴

Azure admins are urged to disable shared key access and implement Azure Active Directory authentication.

📖 Read

via "Dark Reading".
Dark Reading
Microsoft Azure Shared Key Misconfiguration Could Lead to RCE
Azure admins are urged to disable shared key access and implement Azure Active Directory authentication.
248 views
🛡 Cybersecurity & Privacy 🛡 - News
🕴 Microsoft Patches 97 CVEs, Including Zero-Day & Wormable Bugs 🕴

The April 2023 Patch Tuesday security update also included a reissue of a fix for a 10-year-old bug that a threat actor recently exploited in the supply chain attack on 3CX.

📖 Read

via "Dark Reading".
Dark Reading
Microsoft Patches 97 CVEs, Including Zero-Day & Wormable Bugs
The April 2023 Patch Tuesday security update also included a reissue of a fix for a 10-year-old bug that a threat actor recently exploited in the supply chain attack on 3CX.
221 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-21729 ‼

Remote Procedure Call Runtime Information Disclosure Vulnerability

📖 Read

via "National Vulnerability Database".
178 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24887 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
158 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2020-9009 ‼

The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database (via action=shipnotify) because access to this endpoint is completely unchecked. The attacker must guess an order number.

📖 Read

via "National Vulnerability Database".
144 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24893 ‼

Visual Studio Code Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
137 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24883 ‼

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

📖 Read

via "National Vulnerability Database".
133 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24925 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
132 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-28219 ‼

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
129 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-25409 ‼

Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. Restricted users have access to other users outlets.

📖 Read

via "National Vulnerability Database".
130 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-21727 ‼

Remote Procedure Call Runtime Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
125 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-28284 ‼

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

📖 Read

via "National Vulnerability Database".
119 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24884 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
119 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24885 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
120 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2022-46396 ‼

An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper GPU memory processing operations to access a limited amount outside of buffer bounds. This affects Valhall r29p0 through r41p0 before r42p0 and Avalon r41p0 before r42p0.

📖 Read

via "National Vulnerability Database".
122 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-28222 ‼

Windows Kernel Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".
125 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24886 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
123 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24912 ‼

Windows Graphics Component Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".
125 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-24924 ‼

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".
124 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-26555 ‼

praecis_parse in ntpd/refclock_palisade.c in NTP 4.2.8p15 has an out-of-bounds write.

📖 Read

via "National Vulnerability Database".
125 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-28267 ‼

Remote Desktop Protocol Client Information Disclosure Vulnerability

📖 Read

via "National Vulnerability Database".
124 views