ATENTIONβΌ New - CVE-2013-4410
π Read
via "National Vulnerability Database".
ReviewBoard: has an access-control problem in REST APIπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-5562
π Read
via "National Vulnerability Database".
rhn-proxy: may transmit credentials over clear-text when accessing RHN Satelliteπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4576
π Read
via "National Vulnerability Database".
FreeBSD: Input Validation Flaw allows local users to gain elevated privilegesπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4526
π Read
via "National Vulnerability Database".
piwigo has XSS in password.php (incomplete fix for CVE-2012-4525)π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4525
π Read
via "National Vulnerability Database".
piwigo has XSS in password.phpπ Read
via "National Vulnerability Database".
π΄ Leveraging the Cloud for Cyber Intelligence π΄
π Read
via "Dark Reading: ".
How fusing output datasets and sharing information can create a real-time understanding of suspicious activity across your enterprise.π Read
via "Dark Reading: ".
Dark Reading
Cloud Security recent news | Dark Reading
Explore the latest news and expert commentary on Cloud Security, brought to you by the editors of Dark Reading
ATENTIONβΌ New - CVE-2013-2228
π Read
via "National Vulnerability Database".
SaltStack RSA Key Generation allows remote users to decrypt communicationsπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2106
π Read
via "National Vulnerability Database".
webauth before 4.6.1 has authentication credential disclosureπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2103
π Read
via "National Vulnerability Database".
OpenShift cartridge allows remote URL retrievalπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-2101
π Read
via "National Vulnerability Database".
Katello has multiple XSS issues in various entitiesπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4525
π Read
via "National Vulnerability Database".
piwigo has XSS in password.phpπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4480
π Read
via "National Vulnerability Database".
mom creates world-writable pid files in /var/runπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2012-4428
π Read
via "National Vulnerability Database".
openslp: SLPIntersectStringList()' Function has a DoS vulnerabilityπ Read
via "National Vulnerability Database".
π΄ Siemens Offers Workarounds for Newly Found PLC Vulnerability π΄
π Read
via "Dark Reading: ".
An undocumented hardware-based special access feature recently found by researchers in Siemens' S7-1200 can be used by attackers to gain control of the industrial devices.π Read
via "Dark Reading: ".
Dark Reading
Siemens Offers Workarounds for Newly Found PLC Vulnerability
An undocumented hardware-based special access feature recently found by researchers in Siemens' S7-1200 can be used by attackers to gain control of the industrial devices.
β Critical Android Flaw Leads to βPermanent DoSβ β
π Read
via "Threatpost".
The December security update stomped out critical denial-of-service (DoS) and remote-code-execution (RCE) vulnerabilities in the Android operating system.π Read
via "Threatpost".
Threat Post
Critical Android Flaw Leads to βPermanent DoSβ
The December security update stomped out critical denial-of-service (DoS) and remote-code-execution (RCE) vulnerabilities in the Android operating system.
ATENTIONβΌ New - CVE-2013-4486
π Read
via "National Vulnerability Database".
Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation in loggingπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-4411
π Read
via "National Vulnerability Database".
Review Board: URL processing gives unauthorized users access to review listsπ Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2013-4235
π Read
via "National Vulnerability Database".
shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory treesπ Read
via "National Vulnerability Database".
π΄ Smith & Wesson Is Magecart's Latest Target π΄
π Read
via "Dark Reading: ".
Researchers estimate the gun manufacturer's website was compromised sometime before Black Friday.π Read
via "Dark Reading: ".
Darkreading
Smith & Wesson Is Magecart's Latest Target
Researchers estimate the gun manufacturer's website was compromised sometime before Black Friday.
β Android Ups the Mobile Security Ante with Default TLS Encryption β
π Read
via "Threatpost".
More than 90 percent of Android apps running on the latest OS encrypt their traffic by default.π Read
via "Threatpost".
Threat Post
Android Ups the Mobile Security Ante with Default TLS Encryption
More than 90 percent of Android apps running on the latest OS encrypt their traffic by default.
π Report highlights nation-state cyberthreats facing SMBs in 2020 π
π Read
via "Security on TechRepublic".
An increasing number of US executives expressed concern about the prevalence of threats coming from foreign powers.π Read
via "Security on TechRepublic".
TechRepublic
Report highlights nation-state cyberthreats facing SMBs in 2020
An increasing number of US executives expressed concern about the prevalence of threats coming from foreign powers.