Google has found third-party browser developers misusing access to their cloud resources built on the open source Chromium project.
#Updates
https://undercodenews.com/google-has-found-third-party-browser-developers-misusing-access-to-their-cloud-resources-built-on-the-open-source-chromium-project/18/01/2021/
#Updates
https://undercodenews.com/google-has-found-third-party-browser-developers-misusing-access-to-their-cloud-resources-built-on-the-open-source-chromium-project/18/01/2021/
Tongxin UOS General Manager: The desktop ecosystem has the potential to replace Windows 7.
#Updates
MORE DETAILS - https://undercodenews.com/tongxin-uos-general-manager-the-desktop-ecosystem-has-the-potential-to-replace-windows-7/18/01/2021/
#Updates
MORE DETAILS - https://undercodenews.com/tongxin-uos-general-manager-the-desktop-ecosystem-has-the-potential-to-replace-windows-7/18/01/2021/
🔵Eclipse Hawkbit access control error vulnerability:
https://dailycve.com/eclipse-hawkbit-access-control-error-vulnerability
https://dailycve.com/eclipse-hawkbit-access-control-error-vulnerability
Dailycve
Eclipse Hawkbit access control error vulnerability | CVE
Details:
Eclipse hawkBit is an Eclipse Foundation back-end domain-independent application. This product is used for rolling out app upgrades to computers with a restricted side.
🔵DELL EMC Avamar Server SQL injection vulnerability(DC: 217-2021):
https://dailycve.com/dell-emc-avamar-server-sql-injection-vulnerability
https://dailycve.com/dell-emc-avamar-server-sql-injection-vulnerability
Dailycve
DELL EMC Avamar Server SQL injection vulnerability | CVE
Details:
DELL Dell EMC Avamar Cloud is a series of Dell EMC fully virtualized server backup and recovery tools (DELL).
There are SQL injection bugs on DELL EMC Avamar Server 19.1, 19.2, and 19.3. This vulnerability can be used by unauthenticated remote…
🔵Unpatched Maxthon browser (Windows client) has dll hijacking vulnerability:
https://dailycve.com/unpatched-maxthon-browser-windows-client-has-dll-hijacking-vulnerability
https://dailycve.com/unpatched-maxthon-browser-windows-client-has-dll-hijacking-vulnerability
Dailycve
Unpatched Maxthon browser (Windows client) has dll hijacking vulnerability | CVE
Details:
The web browser is the Maxthon Browser.
There is a DLL hijacking flaw in the Maxthon browser (Windows client). Attackers are able to run malicious code exploiting this loophole.
Affected Versions:
Maxthon Browser (Windows client) 5
…
🔵McAfee Agent authorization issue vulnerability (DC: 219-2021)
https://dailycve.com/mcafee-agent-authorization-issue-vulnerability
https://dailycve.com/mcafee-agent-authorization-issue-vulnerability
Dailycve
McAfee Agent authorization issue vulnerability | CVE
Details:
Mcafee McAfee Agent (MA) is a collection of Mcafee (Mcafee) client components that provide safe connectivity between the managed products and ePolicy Orchestrator (anti-virus software management platform). McAfee Agent for Windows previous to…
Phantom Green of the Galaxy S21 can become the next exclusive color of Samsung.
#Technologies
MORE DETAILS - https://undercodenews.com/phantom-green-of-the-galaxy-s21-can-become-the-next-exclusive-color-of-samsung/18/01/2021/
#Technologies
MORE DETAILS - https://undercodenews.com/phantom-green-of-the-galaxy-s21-can-become-the-next-exclusive-color-of-samsung/18/01/2021/
Microsoft's application to support the SpaceX Starlink Internet satellite group in an FCC lawsuit failed.
#bugs
MORE DETAILS - https://undercodenews.com/microsofts-application-to-support-the-spacex-starlink-internet-satellite-group-in-an-fcc-lawsuit-failed/18/01/2021/
#bugs
MORE DETAILS - https://undercodenews.com/microsofts-application-to-support-the-spacex-starlink-internet-satellite-group-in-an-fcc-lawsuit-failed/18/01/2021/
Meitar has announced the addition of nine new partners.
#International
MORE DETAILS - https://undercodenews.com/meitar-has-announced-the-addition-of-nine-new-partners/19/01/2021/
#International
MORE DETAILS - https://undercodenews.com/meitar-has-announced-the-addition-of-nine-new-partners/19/01/2021/
Trump's supporter's favorite SNS to resume service, three facts found in AWS suit.
#International
MORE DETAILS - https://undercodenews.com/trumps-supporters-favorite-sns-to-resume-service-three-facts-found-in-aws-suit/19/01/2021/
#International
MORE DETAILS - https://undercodenews.com/trumps-supporters-favorite-sns-to-resume-service-three-facts-found-in-aws-suit/19/01/2021/
🔵Information leakage vulnerability due to improper implementation of Java API in Apache Tomcat (DC: 220-2021)
https://dailycve.com/information-leakage-vulnerability-due-improper-implementation-java-api-apache-tomcat
https://dailycve.com/information-leakage-vulnerability-due-improper-implementation-java-api-apache-tomcat
Dailycve
Information leakage vulnerability due to improper implementation of Java API in Apache Tomcat | CVE
Details:
The Apache Software Foundation has released an update for the Apache Tomcat vulnerability.
🔵Theonedev OneDev security vulnerability ((DC:221-2021)) :
https://dailycve.com/theonedev-onedev-security-vulnerability
https://dailycve.com/theonedev-onedev-security-vulnerability
Dailycve
Theonedev OneDev security vulnerability | CVE
Details:
Theonedev Onedev is a DevOps all-in-one framework based on Theonedev's JAVA squad. Container design, orchestration, CI, Git management, team coordination and other functions are provided by the framework, helping developers create a simple and…
The most secure messenger in the world doesn't seem to have been hacked. Misinformation came from a security contractor.
#Analytiques
MORE DETAILS - https://undercodenews.com/the-most-secure-messenger-in-the-world-doesnt-seem-to-have-been-hacked-misinformation-came-from-a-security-contractor/19/01/2021/
#Analytiques
MORE DETAILS - https://undercodenews.com/the-most-secure-messenger-in-the-world-doesnt-seem-to-have-been-hacked-misinformation-came-from-a-security-contractor/19/01/2021/
1,700 Russian websites were turned over by Roskomnadzor to repress foreigners.
#CyberAttacks
MORE DETAILS - https://undercodenews.com/1700-russian-websites-were-turned-over-by-roskomnadzor-to-repress-foreigners/19/01/2021/
#CyberAttacks
MORE DETAILS - https://undercodenews.com/1700-russian-websites-were-turned-over-by-roskomnadzor-to-repress-foreigners/19/01/2021/
🔵Unpatched/An SQL injection vulnerability exists in the website building system of Cixi Youcheng Network Technology Co., Ltd.:
https://dailycve.com/unpatchedan-sql-injection-vulnerability-exists-website-building-system-cixi-youcheng-network
https://dailycve.com/unpatchedan-sql-injection-vulnerability-exists-website-building-system-cixi-youcheng-network
Dailycve
Unpatched/An SQL injection vulnerability exists in the website building system of Cixi Youcheng Network Technology Co., Ltd. |…
Details:
Cixi Youcheng Network Co., Ltd. is positioned as a specialist Internet networking provider, supplying clients with a comprehensive network business combining network integration, marketing and service, and network services and product creation as…
Cixi Youcheng Network Co., Ltd. is positioned as a specialist Internet networking provider, supplying clients with a comprehensive network business combining network integration, marketing and service, and network services and product creation as…
🔵Unpatched Xiami Music (Windows client) has a dll hijacking vulnerability:
https://dailycve.com/unpatched-xiami-music-windows-client-has-dll-hijacking-vulnerability
https://dailycve.com/unpatched-xiami-music-windows-client-has-dll-hijacking-vulnerability
Dailycve
Unpatched Xiami Music (Windows client) has a dll hijacking vulnerability | CVE
Details:
Xiami Music is a specialist forum for the discovery and consumption of music content.
There is a DLL hijacking flaw in Xiami Music (Windows client). Attackers are able to run malicious code exploiting this loophole.
Affected Versions:
…
🔵Atlassian Fisheye and Crucible security vulnerabilities:
https://dailycve.com/atlassian-fisheye-and-crucible-security-vulnerabilities
https://dailycve.com/atlassian-fisheye-and-crucible-security-vulnerabilities
Dailycve
Atlassian Fisheye and Crucible security vulnerabilities | CVE
Details:
The Atlassian Fisheye and the Crucible are also Australian Atlassian products. Atlassian Fisheye is a suite of depth viewing tools for source code. Crucible is a collection of methods for code analysis. There are security flaws at Atlassian Fisheye…
🔵WordPress Advanced Access Manager plugin access control error vulnerability:
https://dailycve.com/wordpress-advanced-access-manager-plugin-access-control-error-vulnerability
https://dailycve.com/wordpress-advanced-access-manager-plugin-access-control-error-vulnerability
Dailycve
WordPress Advanced Access Manager plugin access control error vulnerability | CVE
Details:
WordPress is a blogging platform developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports the establishment of PHP and MySQL servers for personal blog sites.
Version 6.6.2 of the WordPress Advanced Access…
🔵WordPress PageLayer plugin cross-site request forgery vulnerability:
https://dailycve.com/wordpress-pagelayer-plugin-cross-site-request-forgery-vulnerability
https://dailycve.com/wordpress-pagelayer-plugin-cross-site-request-forgery-vulnerability
Dailycve
WordPress PageLayer plugin cross-site request forgery vulnerability | CVE
Details:
WordPress is a blogging platform developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports the establishment of PHP and MySQL servers for personal blog sites.
There is a cross-site request forgery flaw…