🔵Linux kernel through 5.11.3 kernel pointer leak can be used to address of the iscsi_transport structure.
(DC:463-2021)
flaw
https://dailycve.com/linux-kernel-through-5113-kernel-pointer-leak-can-be-used-address-iscsitransport-structure
(DC:463-2021)
flaw
https://dailycve.com/linux-kernel-through-5113-kernel-pointer-leak-can-be-used-address-iscsitransport-structure
🔵Centreon host-monitoring widget, service-monitoring widget and tactical-overview widget cross-site scripting vulnerabilities
(DC:464-2021)
+Exploit
https://dailycve.com/centreon-host-monitoring-widget-service-monitoring-widget-and-tactical-overview-widget-cross-site
(DC:464-2021)
+Exploit
https://dailycve.com/centreon-host-monitoring-widget-service-monitoring-widget-and-tactical-overview-widget-cross-site
🔵Cross-Site Request Forgery (CSRF) in trestle-auth:
(DC:465-2021)
https://dailycve.com/cross-site-request-forgery-csrf-trestle-auth
(DC:465-2021)
https://dailycve.com/cross-site-request-forgery-csrf-trestle-auth
Forwarded from UNDERCODE DEV
⚫️Shell positional parameters (command line parameters)
#Shell
https://dev.undercode.help/shell-positional-parameters-command-line-parameters/
#Shell
https://dev.undercode.help/shell-positional-parameters-command-line-parameters/
Sony introduces the "Xperia 1 III" and "Xperia 10 III" in the global market, as well as 5G support for the first time in a midrange device.
#Technologies
View More Details - https://undercodenews.com/sony-introduces-the-xperia-1-iii-and-xperia-10-iii-in-the-global-market-as-well-as-5g-support-for-the-first-time-in-a-midrange-device/14/04/2021/
#Technologies
View More Details - https://undercodenews.com/sony-introduces-the-xperia-1-iii-and-xperia-10-iii-in-the-global-market-as-well-as-5g-support-for-the-first-time-in-a-midrange-device/14/04/2021/
Hitachi Solutions-based "virtual workplace" demonstration experiment to address the issue of operating from home.
#International
View More Details - https://undercodenews.com/hitachi-solutions-based-virtual-workplace-demonstration-experiment-to-address-the-issue-of-operating-from-home/14/04/2021/
#International
View More Details - https://undercodenews.com/hitachi-solutions-based-virtual-workplace-demonstration-experiment-to-address-the-issue-of-operating-from-home/14/04/2021/
CEO of Coinbase: One of the greatest threats in the cryptocurrency industry is regulation.
#Updates
View More Details - https://undercodenews.com/ceo-of-coinbase-one-of-the-greatest-threats-in-the-cryptocurrency-industry-is-regulation/14/04/2021/
#Updates
View More Details - https://undercodenews.com/ceo-of-coinbase-one-of-the-greatest-threats-in-the-cryptocurrency-industry-is-regulation/14/04/2021/
SNILS, OMS, and TIN, electronic replacements for driver's licenses, will be available in Russia this year.
#International
View More Details - https://undercodenews.com/snils-oms-and-tin-electronic-replacements-for-drivers-licenses-will-be-available-in-russia-this-year/14/04/2021/
#International
View More Details - https://undercodenews.com/snils-oms-and-tin-electronic-replacements-for-drivers-licenses-will-be-available-in-russia-this-year/14/04/2021/
🔵Shopware platform below 6.3.5.3. After order payment process manipulation:
(DC:466-2021)
Flaw
https://dailycve.com/shopware-platform-below-6353-after-order-payment-process-manipulation
(DC:466-2021)
Flaw
https://dailycve.com/shopware-platform-below-6353-after-order-payment-process-manipulation
🔵Leak of .env if project root is configured as web root in shopware/production:
(DC:467-2021)
Bug
https://dailycve.com/leak-env-if-project-root-configured-web-root-shopwareproduction
(DC:467-2021)
Bug
https://dailycve.com/leak-env-if-project-root-configured-web-root-shopwareproduction
🔵Leak of information via Store-API aggregations in shopware/platform and shopware/core:
(DC:468-2021)
Api flaw
https://dailycve.com/leak-information-store-api-aggregations-shopwareplatform-and-shopwarecore
(DC:468-2021)
Api flaw
https://dailycve.com/leak-information-store-api-aggregations-shopwareplatform-and-shopwarecore
🔵IP blacklist bypass via transitional IPv6 addresses on dual-stack networks:
(DC:469-2021)
Flaw
https://dailycve.com/ip-blacklist-bypass-transitional-ipv6-addresses-dual-stack-networks
(DC:469-2021)
Flaw
https://dailycve.com/ip-blacklist-bypass-transitional-ipv6-addresses-dual-stack-networks
Parallels introduces M1 Mac native virtualization for ARM Windows, which improves performance by 30%
#Updates
View More Details - https://undercodenews.com/parallels-introduces-m1-mac-native-virtualization-for-arm-windows-which-improves-performance-by-30/14/04/2021/
#Updates
View More Details - https://undercodenews.com/parallels-introduces-m1-mac-native-virtualization-for-arm-windows-which-improves-performance-by-30/14/04/2021/
Xiaomi has expanded its chip investment and now has more than 30 firms in its portfolio.
#Technologies
View More Details - https://undercodenews.com/xiaomi-has-expanded-its-chip-investment-and-now-has-more-than-30-firms-in-its-portfolio/14/04/2021/
#Technologies
View More Details - https://undercodenews.com/xiaomi-has-expanded-its-chip-investment-and-now-has-more-than-30-firms-in-its-portfolio/14/04/2021/
The fraud has progressed further, as shown by the 2021 cyber assault described by the "legendary hacker."
#CyberAttacks
View More Details - https://undercodenews.com/the-fraud-has-progressed-further-as-shown-by-the-2021-cyber-assault-described-by-the-legendary-hacker/14/04/2021/
#CyberAttacks
View More Details - https://undercodenews.com/the-fraud-has-progressed-further-as-shown-by-the-2021-cyber-assault-described-by-the-legendary-hacker/14/04/2021/
The CEO of Intel is gloomy, predicting that the global chip supply crisis will last for several years.
#Technologies
View More Details - https://undercodenews.com/the-ceo-of-intel-is-gloomy-predicting-that-the-global-chip-supply-crisis-will-last-for-several-years/14/04/2021/
#Technologies
View More Details - https://undercodenews.com/the-ceo-of-intel-is-gloomy-predicting-that-the-global-chip-supply-crisis-will-last-for-several-years/14/04/2021/
🔵Matrix Denial of service (via resource exhaustion) due to improper input validation on third-party identifier endpoints:
(DC:468-2021)
flaw
https://dailycve.com/matrix-denial-service-resource-exhaustion-due-improper-input-validation-third-party-identifier
(DC:468-2021)
flaw
https://dailycve.com/matrix-denial-service-resource-exhaustion-due-improper-input-validation-third-party-identifier
🔵Weilian Technology WiSCADA has a denial of service vulnerability:
(DC:469-2021)
https://dailycve.com/weilian-technology-wiscada-has-denial-service-vulnerability
(DC:469-2021)
https://dailycve.com/weilian-technology-wiscada-has-denial-service-vulnerability
🔵OS Command Injection in giting:
(DC:470-2021)
Exploit
https://dailycve.com/os-command-injection-giting
(DC:470-2021)
Exploit
https://dailycve.com/os-command-injection-giting
Eff just started a website for testing your Chrome browser if running under the tracking Federated Learning of Cohorts or not.
#Updates
View More Details - https://undercodenews.com/eff-just-started-a-page-for-testing-your-chrome-browser-if-running-under-the-tracking-federated-learning-of-cohorts-or-not/14/04/2021/
#Updates
View More Details - https://undercodenews.com/eff-just-started-a-page-for-testing-your-chrome-browser-if-running-under-the-tracking-federated-learning-of-cohorts-or-not/14/04/2021/
