🛡 Cybersecurity & Privacy 🛡 - News
@cibsecurity
25.8K subscribers
89.2K links
🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
🛡 Cybersecurity & Privacy 🛡 - News
25.8K subscribers
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2022-34355

IBM Jazz Foundation (IBM Engineering Lifecycle Management 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2) could disclose sensitive version information to a user that could be used in further attacks against the system. IBM X-Force ID: 230498.

📖 Read

via "National Vulnerability Database".
👍1
502 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-45199

Mbed TLS 3.2.x through 3.4.x before 3.5 has a Buffer Overflow that can lead to remote Code execution.

📖 Read

via "National Vulnerability Database".
555 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-5182

Sensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in the adm group could use this information to find hashed passwords and possibly escalate their privilege.

📖 Read

via "National Vulnerability Database".
685 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-36123

Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9, allows local attackers to execute arbitrary code and gain sensitive information.

📖 Read

via "National Vulnerability Database".
688 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-43615

Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.

📖 Read

via "National Vulnerability Database".
756 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40639

In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

📖 Read

via "National Vulnerability Database".
595 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40652

In jpg driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
589 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40647

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
566 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40633

In phasecheckserver, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
424 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40641

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
331 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40638

In Telecom service, there is a possible missing permission check. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
291 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40631

In Dialer, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed

📖 Read

via "National Vulnerability Database".
281 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40653

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

📖 Read

via "National Vulnerability Database".
340 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40643

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
336 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40646

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
268 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40654

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

📖 Read

via "National Vulnerability Database".
328 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40635

In linkturbo, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
405 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40636

In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with System execution privileges needed

📖 Read

via "National Vulnerability Database".
385 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40651

In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
324 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40642

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
366 views
🛡 Cybersecurity & Privacy 🛡 - News
CVE-2023-40644

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
448 views