Aggregator

CVE-2021-26105 | Fortinet FortiSandbox 3.1.4/3.2.2 HTTP Request stack-based overflow (FG-IR-20-234)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Fortinet FortiSandbox 3.1.4/3.2.2. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2021-26105. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-26091 | Fortinet FortiMail up to 6.2.9/6.4.4 weak prng (FG-IR-21-031)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability classified as problematic was found in Fortinet FortiMail up to 6.2.9/6.4.4. Affected by this vulnerability is an unknown functionality. The manipulation leads to cryptographically weak prng. This vulnerability is known as CVE-2021-26091. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-1558 | Mattermost Mobile Apps up to 2.25.0 GIF Image Validator improper validation of specified type of input

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability classified as problematic has been found in Mattermost Mobile Apps up to 2.25.0. Affected is an unknown function of the component GIF Image Validator. The manipulation leads to improper validation of specified type of input. This vulnerability is traded as CVE-2025-1558. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-29294 | H3C NX18 Plus/NX30/NX54/NX600/NX15000/BX54/BX54-E set_ipv6_static/clear_ipv6_info privilege escalation

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability was found in H3C NX18 Plus, NX30, NX54, NX600, NX15000, BX54 and BX54-E. It has been rated as critical. This issue affects the function set_ipv6_static/clear_ipv6_info. The manipulation leads to privilege escalation. The identification of this vulnerability is CVE-2025-29294. The attack may be initiated remotely. There is no exploit available.
vuldb.com

CVE-2025-23204 | api-platform core up to 4.1.3 input validation (GHSA-7mxx-3cgm-xxv3)

VulDB Recent Entries
4 months 2 weeks ago
A vulnerability was found in api-platform core up to 4.1.3 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2025-23204. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks

The Hackers News
4 months 2 weeks ago
Microsoft on Monday announced a new feature called inline data protection for its enterprise-focused Edge for Business web browser. The native data security control is designed to prevent employees from sharing sensitive company-related data into consumer generative artificial intelligence (GenAI) apps like OpenAI ChatGPT, Google Gemini, and DeepSeek. The list will be expanded over time to
The Hacker News

Protecting your personal information from data brokers

Help Net Security
4 months 2 weeks ago

How aware are you that your personal information could be bought and sold without your consent—and that there are companies whose entire business model revolves around this? So, these companies, called data brokers, collect everything they can about you – where you shop, what you search online, even stuff from public records – and then sell it to other companies, mostly for ads. The real problem lies in the lack of transparency since most people … More →

The post Protecting your personal information from data brokers appeared first on Help Net Security.

Help Net Security

Managed ad