Aggregator

Submit #742666 / VDB-344267

Submit #742663 / VDB-344266

Submit #742662 / VDB-344265

The chatbot era has ended. For two years, we’ve interacted with digital assistants that summarize emails and suggest recipes, but the National Institute of Standards and Technology (NIST) now draws a definitive line between machines that talk and machines that act. Their newly released Request for Information (RFI) signals a fundamental paradigm shift in how..

The post Beyond the Chatbot: Why NIST is Rewriting the Rules for Autonomous AI appeared first on Security Boulevard.

A sophisticated malware campaign has surfaced where threat actors are distributing the ValleyRAT backdoor disguised as a legitimate installer for the popular messaging application, LINE. This targeted attack primarily focuses on Chinese-speaking users, leveraging a deceptive executable to infiltrate systems and compromise sensitive login credentials. The malware employs a complex loading chain involving shellcode execution […]

The post ValleyRAT Mimic as LINE Installer Attacking Users to Steal Login Details appeared first on Cyber Security News.

Submit #742633 / VDB-344264

Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in attempts to deactivate them. [...]

A vulnerability was found in Foxit Reader 12.1.3.15356 and classified as critical. This affects an unknown function of the component Javascript saveAs API. Executing a manipulation can lead to file inclusion. This vulnerability is handled as CVE-2023-39542. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Foxit Reader 12.1.3.15356. Affected by this issue is some unknown functionality of the component Javascript exportDataObject API. Such manipulation leads to file inclusion. This vulnerability is referenced as CVE-2023-40194. It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Foxit Reader 12.1.3.15356. It has been declared as critical. Affected is an unknown function of the component Javascript exportDataObject API. The manipulation results in file inclusion. This vulnerability was named CVE-2023-35985. The attack may be performed from remote. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Foxit Reader 12.1.3.15356. It has been classified as critical. This impacts an unknown function of the component 3D Annotation Handler. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-32616. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, has been found in Autodesk Design Review. The impacted element is an unknown function of the component PDF File Handler. This manipulation causes double free. This vulnerability is tracked as CVE-2021-27033. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability labeled as critical has been found in Autodesk 2011/2012/2013/2017/2018. This affects an unknown part of the component TIFF File Handler. Such manipulation leads to buffer overflow. This vulnerability is uniquely identified as CVE-2021-27039. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

A vulnerability, which was classified as critical, was found in Autodesk 2011/2012/2013/2017/2018. This affects an unknown function of the component PICT File Handler. Such manipulation leads to heap-based buffer overflow. This vulnerability is listed as CVE-2021-27034. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.

A vulnerability identified as critical has been detected in Autodesk 2011/2012/2013/2017/2018. This issue affects some unknown processing of the component PDF File Handler. Performing a manipulation results in type confusion. This vulnerability is known as CVE-2021-27038. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.

A vulnerability identified as critical has been detected in Autodesk 2011/2012/2013/2017/2018. Affected by this issue is some unknown functionality of the component File Handler. This manipulation causes double free. This vulnerability is handled as CVE-2021-27037. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability has been found in Autodesk 2011/2012/2013/2017/2018 and classified as critical. This impacts an unknown function of the component File Handler. Performing a manipulation results in buffer overflow. This vulnerability is cataloged as CVE-2021-27036. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability categorized as critical has been discovered in Autodesk 2011/2012/2013/2017/2018. Affected by this vulnerability is an unknown functionality of the component File Handler. The manipulation results in buffer overflow. This vulnerability is known as CVE-2021-27035. It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Autodesk Design Review and AutoCAD. It has been rated as critical. This affects an unknown function of the component GIF Handler. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2022-33889. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.