Submit #614375: GNU binutils--gdb 2.45 Out-of-bounds Write [Accepted]
Submit #614375 / VDB-316244
Aggregator
Submit #614355: GNU binutils--gdb 2.45 Heap-based Buffer Overflow [Accepted]
1 month 2 weeks ago
Submit #614355 / VDB-316243
arthurx
CVE-2024-41169 | Apache Zeppelin up to 0.11.x Cluster Interpreter resource control (EUVD-2024-54778)
1 month 2 weeks ago
A vulnerability classified as problematic has been found in Apache Zeppelin up to 0.11.x. Affected is an unknown function of the component Cluster Interpreter. The manipulation leads to improper control of resource through lifetime.
This vulnerability is traded as CVE-2024-41169. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Hackers Compromise WordPress GravityForms Plugin with Malicious Code Injection
1 month 2 weeks ago
Hackers have targeted the popular WordPress plugin Gravity Forms, injecting malicious code into versions downloaded from the official gravityforms.com domain. The breach was first reported on July 11, 2025, when security researchers noticed suspicious HTTP requests to the domain gravityapi.org, which was registered just days earlier on July 8, 2025. This domain, now suspended by […]
The post Hackers Compromise WordPress GravityForms Plugin with Malicious Code Injection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
20 лет учёные искали, как добраться до VAV1. Молекулярный клей дал им ключ к атаке
1 month 2 weeks ago
Новый способ заставить организм уничтожать «плохие» белки.
За минуту — миллионы книг. Это не просто чип. Это начало конца медленных машин
1 month 2 weeks ago
1000 гигабит в секунду, потребление — как у чайной ложки кипятка.
Thermomix TM5 Vulnerabilities Enable Remote Takeover by Attackers
1 month 2 weeks ago
Researchers have uncovered multiple vulnerabilities in the Thermomix TM5, a multifunctional kitchen appliance from Vorwerk, allowing attackers to potentially achieve remote takeover through firmware manipulation and persistent code execution. The device’s main board, powered by a Freescale/NXP i.MX28 SoC with ARM926EJ-S core, integrates a NAND flash (Toshiba TC58NVG0S3HTA00) and DDR2 SDRAM, which were dumped and […]
The post Thermomix TM5 Vulnerabilities Enable Remote Takeover by Attackers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Safepay
1 month 2 weeks ago
You must login to view this content
cohenido
Safepay
1 month 2 weeks ago
You must login to view this content
cohenido
SecWiki News 2025-07-12 Review
1 month 2 weeks ago
今日暂未更新资讯~
更多最新文章,请访问SecWiki
更多最新文章,请访问SecWiki
Hacker Returns $42 Million in Stolen Crypto in Exchange for $5 Million Bounty
1 month 2 weeks ago
A security flaw in the GMX V1 software was made public, causing a significant upheaval in the decentralized finance (DeFi) ecosystem and forcing immediate action to protect user assets. GMX, a prominent perpetual futures trading platform built on blockchain technology, relies on its V1 protocol for liquidity provision through its GLP (GMX Liquidity Provider) token. […]
The post Hacker Returns $42 Million in Stolen Crypto in Exchange for $5 Million Bounty appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
После инсульта всё на вкус как картон? Графеновый язык вернёт вам шоколад и смысл есть дальше
1 month 2 weeks ago
Робот не ест, не пьёт и не жует — но уже отличает колу от кофе с точностью до молекулы.
CVE-2023-0699 | Google Chrome up to 109.0.5414.119 GPU use after free (EUVD-2023-12727)
1 month 2 weeks ago
A vulnerability classified as critical has been found in Google Chrome. Affected is an unknown function of the component GPU. The manipulation leads to use after free.
This vulnerability is traded as CVE-2023-0699. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0698 | Google Chrome up to 109.0.5414.119 WebRTC out-of-bounds (EUVD-2023-12726)
1 month 2 weeks ago
A vulnerability was found in Google Chrome. It has been rated as problematic. This issue affects some unknown processing of the component WebRTC. The manipulation leads to out-of-bounds read.
The identification of this vulnerability is CVE-2023-0698. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0697 | Google Chrome up to 109.0.5414.119 Full Screen Mode Remote Code Execution (EUVD-2023-12725)
1 month 2 weeks ago
A vulnerability was found in Google Chrome. It has been declared as critical. This vulnerability affects unknown code of the component Full Screen Mode. The manipulation leads to Remote Code Execution.
This vulnerability was named CVE-2023-0697. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0676 | phpipam up to 1.5.0 cross site scripting (EUVD-2023-12705)
1 month 2 weeks ago
A vulnerability was found in phpipam up to 1.5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2023-0676. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0677 | phpipam up to 1.5.0 cross site scripting (EUVD-2023-12706)
1 month 2 weeks ago
A vulnerability was found in phpipam up to 1.5.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2023-0677. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0687 | GNU C Library 2.38 Call Graph Monitor gmon.c __monstartup buffer overflow (Bug 29444 / EUVD-2023-12716)
1 month 2 weeks ago
A vulnerability was found in GNU C Library 2.38. It has been declared as problematic. This vulnerability affects the function __monstartup of the file gmon.c of the component Call Graph Monitor. The manipulation leads to buffer overflow.
This vulnerability was named CVE-2023-0687. An attack has to be approached locally. There is no exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The inputs that induce this vulnerability are basically addresses of the running application that is built with gmon enabled. It's basically trusted input or input that needs an actual security flaw to be compromised or controlled.
vuldb.com
CVE-2023-0696 | Google Chrome up to 109.0.5414.119 V8 type confusion (EUVD-2023-12724)
1 month 2 weeks ago
A vulnerability was found in Google Chrome. It has been classified as critical. This affects an unknown part of the component V8. The manipulation leads to type confusion.
This vulnerability is uniquely identified as CVE-2023-0696. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Microsoft Broadens Zero Trust Training to Address Network and SecOps Domains
1 month 2 weeks ago
Zero Trust architectures are being adopted by enterprises globally to update their security postures in response to the fast changing cyberthreat landscape, where traditional perimeter-based defenses are becoming more and more insufficient. Zero Trust operates on the principle of “never trust, always verify,” mandating continuous authentication, authorization, and validation across all access points. Microsoft has […]
The post Microsoft Broadens Zero Trust Training to Address Network and SecOps Domains appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra