π’ βFull speed aheadβ mentality in cloud native space causing security headaches π’
π Read
via "ITPro".
Red Hat says the rapid development of cloud native technologies means that security issues could go unnoticedπ Read
via "ITPro".
Cloud Pro
βFull speed aheadβ mentality in cloud native space causing security headaches
Red Hat says the rapid development of cloud native technologies means that security issues could go unnoticed
βΌ CVE-2023-29923 βΌ
π Read
via "National Vulnerability Database".
PowerJob V4.3.1 is vulnerable to Insecure Permissions. via the list job interface.π Read
via "National Vulnerability Database".
βΌ CVE-2023-29586 βΌ
π Read
via "National Vulnerability Database".
Code Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during a copy operation. This leads to Arbitrary File Read by allowing any user to copy any directory in the system to a directory they control.π Read
via "National Vulnerability Database".
βΌ CVE-2023-30612 βΌ
π Read
via "National Vulnerability Database".
Cloud hypervisor is a Virtual Machine Monitor for Cloud workloads. This vulnerability allows users to close arbitrary open file descriptors in the Cloud Hypervisor process via sending malicious HTTP request through the HTTP API socket. As a result, the Cloud Hypervisor process can be easily crashed, causing Deny-of-Service (DoS). This can also be a potential Use-After-Free (UAF) vulnerability. Users require to have the write access to the API socket file to trigger this vulnerability. Impacted versions of Cloud Hypervisor include upstream main branch, v31.0, and v30.0. The vulnerability was initially detected by our `http_api_fuzzer` via oss-fuzz. This issue has been addressed in versions 30.1 and 31.1. Users unable to upgrade may mitigate this issue by ensuring the write access to the API socket file is granted to trusted users only.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1900 βΌ
π Read
via "National Vulnerability Database".
A vulnerability within the Avira network protection feature allowed an attacker with local execution rights to cause an overflow. This could corrupt the data on the heap and lead to a denial-of-service situation. Issue was fixed with Endpointprotection.exe version 1.0.2303.633π Read
via "National Vulnerability Database".
βΌ CVE-2023-30614 βΌ
π Read
via "National Vulnerability Database".
Pay is a payments engine for Ruby on Rails 6.0 and higher. In versions prior to 6.3.2 a payments info page of Pay is susceptible to reflected Cross-site scripting. An attacker could create a working URL that renders a javascript link to a user on a Rails application that integrates Pay. This URL could be distributed via email to specifically target certain individuals. If the targeted application contains a functionality to submit user-generated content (such as comments) the attacker could even distribute the URL using that functionality. This has been patched in version 6.3.2 and above. Users are advised to upgrade. There are no known workarounds for this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1587 βΌ
π Read
via "National Vulnerability Database".
Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11π Read
via "National Vulnerability Database".
βΌ CVE-2023-30611 βΌ
π Read
via "National Vulnerability Database".
Discourse-reactions is a plugin that allows user to add their reactions to the post in the Discourse messaging platform. In affected versions data about what reactions were performed on a post in a private topic could be leaked. This issue has been addressed in version 0.3. Users are advised to upgrade. Users unable to upgrade should disable the discourse-reactions plugin to fully mitigate the issue.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1586 βΌ
π Read
via "National Vulnerability Database".
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11π Read
via "National Vulnerability Database".
βΌ CVE-2023-30610 βΌ
π Read
via "National Vulnerability Database".
aws-sigv4 is a rust library for low level request signing in the aws cloud platform. The `aws_sigv4::SigningParams` struct had a derived `Debug` implementation. When debug-formatted, it would include a user's AWS access key, AWS secret key, and security token in plaintext. When TRACE-level logging is enabled for an SDK, `SigningParams` is printed, thereby revealing those credentials to anyone with access to logs. All users of the AWS SDK for Rust who enabled TRACE-level logging, either globally (e.g. `RUST_LOG=trace`), or for the `aws-sigv4` crate specifically are affected. This issue has been addressed in a set of new releases. Users are advised to upgrade. Users unable to upgrade should disable TRACE-level logging for AWS Rust SDK crates.π Read
via "National Vulnerability Database".
βΌ CVE-2023-29922 βΌ
π Read
via "National Vulnerability Database".
PowerJob V4.3.1 is vulnerable to Incorrect Access Control via the create user/save interface.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1585 βΌ
π Read
via "National Vulnerability Database".
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14 February 2023 or later.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43819 βΌ
π Read
via "National Vulnerability Database".
Stargate-Bukkit is a mod for the minecraft video game which adds a portal focused environment. In affected versions Minecarts with chests will drop their items when teleporting through a portal; when they reappear, they will still have their items impacting the integrity of the game world. The teleport code has since been rewritten and is available in release `0.11.5.1`. Users are advised to upgrade. There are no known workarounds for this issue.π Read
via "National Vulnerability Database".
π΄ CrowdStrike Announces Managed XDR to Close the Cybersecurity Skills Gap, Expands MDR Portfolio π΄
π Read
via "Dark Reading".
π Read
via "Dark Reading".
Dark Reading
CrowdStrike Announces Managed XDR to Close the Cybersecurity Skills Gap, Expands MDR Portfolio
AUSTIN, Texas β April 19, 2023 β CrowdStrike (Nasdaq: CRWD) today introduced CrowdStrike Falcon Complete XDR, a new Managed eXtended Detection and Response (MXDR) service from the MDR and endpoint security market leader. CrowdStrike Falcon Complete XDR extendsβ¦
π΄ Coro Raises an Additional $75M Bringing the Total Raised to $155M in 12 Months π΄
π Read
via "Dark Reading".
New funding to drive aggressive growth of industryβs only cybersecurity platform that brings enterprise grade cybersecurity to the mid-market; 300% year-over-year growth projected for 5th year in a row.π Read
via "Dark Reading".
Dark Reading
Coro Raises an Additional $75M Bringing the Total Raised to $155M in 12 Months
New funding to drive aggressive growth of industryβs only cybersecurity platform that brings enterprise grade cybersecurity to the mid-market; 300% year-over-year growth projected for 5th year in a row.
βΌ CVE-2023-21098 βΌ
π Read
via "National Vulnerability Database".
In multiple functions of AccountManagerService.java, there is a possible loading of arbitrary code into the System Settings app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-260567867π Read
via "National Vulnerability Database".
βΌ CVE-2023-2162 βΌ
π Read
via "National Vulnerability Database".
A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal information.π Read
via "National Vulnerability Database".
βΌ CVE-2023-21100 βΌ
π Read
via "National Vulnerability Database".
In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-242544249π Read
via "National Vulnerability Database".
βΌ CVE-2023-28123 βΌ
π Read
via "National Vulnerability Database".
A permission misconfiguration in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33970 βΌ
π Read
via "National Vulnerability Database".
Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate priveleges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3429 βΌ
π Read
via "National Vulnerability Database".
When instructing cloud-init to set a random password for a new user account, versions before 21.2 would write that password to the world-readable log file /var/log/cloud-init-output.log. This could allow a local user to log in as another user.π Read
via "National Vulnerability Database".