热点|国内首个关基安全测评标准发布!360全面贯彻落实,筑牢行业基座
从“制度设计”转向“实操落地”,《关键信息基础设施安全测评要求》标准发布!
Aggregator
热点|国内首个关基安全测评标准发布!360全面贯彻落实,筑牢行业基座
4 months 2 weeks ago
从“制度设计”转向“实操落地”,《关键信息基础设施安全测评要求》标准发布!
ИИ научился делать чеки — настолько реалистично, что ими уже пытаются вернуть деньги за стейк
4 months 2 weeks ago
Когда математика хромает, но чек уже готов.
Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream
4 months 2 weeks ago
Attack matches three-year long pattern of ScreenConnect attacks tracked by Sophos MDR as STAC4365.
gallagherseanm
〖工具〗LadonGo开源全平台内网渗透扫描器
4 months 2 weeks ago
K8gege
CVE-2024-42122 | Linux Kernel up to 6.9.8 AMD Display null pointer dereference (062edd612fcd/8e65a1b7118a / Nessus ID 233595)
4 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.9.8. It has been rated as critical. Affected by this issue is some unknown functionality of the component AMD Display. The manipulation leads to null pointer dereference.
This vulnerability is handled as CVE-2024-42122. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-7883 | Arm Compiler for Embedded Function Call sensitive information in resource not removed before reuse (Nessus ID 233625)
4 months 2 weeks ago
A vulnerability was found in Arm Compiler for Embedded, Compiler for Embedded FuSa, Compiler for Functional Safety and CLang and classified as problematic. This issue affects some unknown processing of the component Function Call Handler. The manipulation leads to sensitive information in resource not removed before reuse.
The identification of this vulnerability is CVE-2024-7883. The attack may be initiated remotely. There is no exploit available.
vuldb.com
Pidgin 3.0.0 Experimental 2 释出
4 months 2 weeks ago
Pidgin 3.0.0 正距离我们越来越近。开发者宣布释出 Pidgin 3.0.0 Experimental 2,这是一个 pre alpha 版本,版本号 2.91.0,该版本主要用于测试。根据发布计划,Experimental 3 计划于 2025-06-30 发布,版本号为 2.92.0,Experimental 4 计划于 2025-09-30 发布,Alpha 1 计划于 2025-12-31 释出。Experimental 2 新特性包括:对话成员列表现已按徽章正确排序,在 IRC 中频道管理员位于顶部,之后是有语音功能的用户,后面是没有任何其他权限的用户;支持搜索用户名;整合了新消息通知;支持传入 IRC 格式,更多可浏览 ChangeLog。
警惕!Cannon 打印机漏洞可致攻击者执行任意代码
4 months 2 weeks ago
安全客
甲骨文公司因涉数百万用户云数据泄露遭集体诉讼
4 months 2 weeks ago
甲骨文遭集体诉讼:云泄露600万用户数据,隐瞒两月未通知!
Секреты страны на флешке: стажёр британской разведки стал угрозой безопасности
4 months 2 weeks ago
Суд в закрытом режиме вынесет вердикт по делу о краже информации под грифом «top secret».
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
【支持排查与检测】Vite任意文件读取漏洞(CVE-2025-31125)
4 months 2 weeks ago
近日,绿盟科技CERT监测到Vite发布安全公告,修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开,请相关用户尽快采取措施进行防护。
CERN против Китая: битва за будущее фундаментальной физики
4 months 2 weeks ago
Успеет ли Европа построить коллайдер первой?
CVE-2024-33793 | Netis MEX605 2.00.06 Ping Test Page cross site scripting
4 months 2 weeks ago
A vulnerability was found in Netis MEX605 2.00.06 and classified as problematic. Affected by this issue is some unknown functionality of the component Ping Test Page. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-33793. The attack may be launched remotely. There is no exploit available.
vuldb.com