🛡 Cybersecurity & Privacy 🛡 - News
@cibsecurity
25.8K subscribers
89.2K links
🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com
Download Telegram
About
Blog
Apps
Platform
Join
🛡 Cybersecurity & Privacy 🛡 - News
25.8K subscribers
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-45199 ‼

Mbed TLS 3.2.x through 3.4.x before 3.5 has a Buffer Overflow that can lead to remote Code execution.

📖 Read

via "National Vulnerability Database".
555 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-5182 ‼

Sensitive data could be exposed in logs of subiquity version 23.09.1 and earlier. An attacker in the adm group could use this information to find hashed passwords and possibly escalate their privilege.

📖 Read

via "National Vulnerability Database".
685 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-36123 ‼

Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9, allows local attackers to execute arbitrary code and gain sensitive information.

📖 Read

via "National Vulnerability Database".
688 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-43615 ‼

Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.

📖 Read

via "National Vulnerability Database".
756 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40639 ‼

In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

📖 Read

via "National Vulnerability Database".
595 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40652 ‼

In jpg driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
589 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40647 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
566 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40633 ‼

In phasecheckserver, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
424 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40641 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
331 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40638 ‼

In Telecom service, there is a possible missing permission check. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
291 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40631 ‼

In Dialer, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed

📖 Read

via "National Vulnerability Database".
281 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40653 ‼

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

📖 Read

via "National Vulnerability Database".
340 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40643 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
336 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40646 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
268 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40654 ‼

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

📖 Read

via "National Vulnerability Database".
328 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40635 ‼

In linkturbo, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
405 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40636 ‼

In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with System execution privileges needed

📖 Read

via "National Vulnerability Database".
385 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40651 ‼

In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

📖 Read

via "National Vulnerability Database".
324 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40642 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
366 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40644 ‼

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
448 views
🛡 Cybersecurity & Privacy 🛡 - News
‼ CVE-2023-40634 ‼

In phasechecksercer, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

📖 Read

via "National Vulnerability Database".
554 views