Aggregator

A vulnerability was found in GNU binutils 2.28 and classified as problematic. This issue affects the function main of the file elflink.c of the component BFD Library. The manipulation as part of File Descriptor leads to null pointer dereference. The identification of this vulnerability is CVE-2017-7614. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in GNU binutils 2.28 and classified as problematic. This issue affects the function malloc of the component BFD Library. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2017-8395. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in GNU binutils 2.28 and classified as critical. This vulnerability affects unknown code of the component GNU Linker. The manipulation leads to memory corruption. This vulnerability was named CVE-2017-7227. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Password policies are a cornerstone of cybersecurity for any organization. A good password policy ensures every end user has a strong and unique password, significantly reducing the risk of unauthorized access and data breaches. These policies not only protect sensitive data but also align with best practices and compliance requirements, such as those outlined by NIST. Specops research has found that passwords are still used by 88% of organizations. So even if they can cause … More →

The post Product showcase: Securing Active Directory passwords with Specops Password Policy appeared first on Help Net Security.

The NIS2 directive requires the EU cybersecurity agency to produce a biennial report on the state of cybersecurity in the Union

A vulnerability was found in Netgear R6900 1.0.1.26_1.0.20. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file upgrade_check.cgi of the component HTTP Header Handler. The manipulation of the argument Content-Length leads to buffer overflow. This vulnerability is known as CVE-2024-12147. The attack can be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in DocuSeal up to 1.8.1. It has been classified as problematic. Affected is an unknown function. The manipulation leads to clickjacking. This vulnerability is traded as CVE-2024-52277. It is possible to launch the attack remotely. There is no exploit available.

Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses

A vulnerability was found in Infinix Mobile com.transsion.agingfunction 13 and classified as critical. This issue affects some unknown processing. The manipulation leads to improper verification of intent by broadcast receiver. The identification of this vulnerability is CVE-2024-10576. An attack has to be approached locally. There is no exploit available.

A vulnerability has been found in Open Design Alliance ODA Drawings SDK 2024.10 and classified as critical. This vulnerability affects unknown code of the component DWF File Handler. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2024-8894. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Submit #451858 / VDB-286873

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

海量权益及定制礼品等你来拿！

自研模型和生态伙伴的模型，亚马逊都要。