Aggregator

A vulnerability has been found in Apple iOS up to 8.4.0 and classified as problematic. This vulnerability affects unknown code of the component IOHIDFamily. The manipulation leads to memory corruption. This vulnerability was named CVE-2015-5774. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Apple Mac OS X up to 10.10.4. It has been rated as critical. Affected by this issue is some unknown functionality of the component QL Office. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2015-5773. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in X.org X11 up to 1.0.2 and classified as critical. This issue affects some unknown processing of the component Command Line Handler. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2006-0745. The attack needs to be approached within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

威胁行为者正利用DeepSeek日益增长的知名度，在Python包索引（PyPI）上推广两个恶意信息窃取软件包，这些软件包冒充了该AI平台的开发者工具。 这两个软件包分别命名为“deepseeek”和“deepseekai”，模仿了中国人工智能初创公司DeepSeek的名称。该公司开发的R1大型语言模型近期迅速走红。 有趣的是，这些软件包是由一个创建于2023年6月的“老”账户上传的，该账户此

威胁行为者正利用DeepSeek日益增长的知名度，在Python包索引（PyPI）上推广两个恶意信息窃取软件包，这些软件包冒充了该AI平台的开发者工具。 这两个软件包分别命名为“deepseeek”和“deepseekai”，模仿了中国人工智能初创公司DeepSeek的名称。该公司开发的R1大型语言模型近期迅速走红。 有趣的是，这些软件包是由一个创建于2023年6月的“老”账户上传的，该账户此

A vulnerability, which was classified as critical, was found in Apple iOS up to 8.4.0. This affects an unknown part of the component QL Office. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2015-5773. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic has been found in Apple Mac OS X up to 10.10.4. This affects an unknown part of the component AppleGraphicsControl. The manipulation leads to information disclosure (Kernel Memory). This vulnerability is uniquely identified as CVE-2015-5768. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Apple Mac OS X up to 10.10.4. Affected by this issue is some unknown functionality of the component SceneKit. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2015-5772. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple Mac OS X up to 10.10.4. This affects an unknown part of the component Quartz Composer Framework. The manipulation as part of QuickTime File leads to memory corruption. This vulnerability is uniquely identified as CVE-2015-5771. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as very critical was found in Apple Mac OS X up to 10.10.4. This vulnerability affects unknown code of the component ImageIO. The manipulation leads to memory corruption. This vulnerability was named CVE-2015-5758. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple Mac OS X up to 10.10.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component NTFS. The manipulation leads to memory corruption. This vulnerability is known as CVE-2015-5763. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple iOS up to 8.4.0. Affected is an unknown function of the component ImageIO. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2015-5758. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in OpenSSL up to 1.0.0. It has been rated as problematic. This issue affects the function CRYPTO_cleanup_all_ex_data in the library zlib_stateful_finish. The manipulation leads to improper resource management. The identification of this vulnerability is CVE-2009-4355. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical was found in Zabbix up to 1.6.7. Affected by this vulnerability is the function send_history_last_id. The manipulation leads to sql injection. This vulnerability is known as CVE-2009-4499. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Mozilla Firefox and classified as very critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper resource management. This vulnerability is known as CVE-2010-0176. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Check Point Firewall-1 4.0/4.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SMTP Security Server Proxy. The manipulation leads to denial of service. This vulnerability is known as CVE-2000-0582. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in AdaptCMS 1.4. Affected is an unknown function. The manipulation of the argument sitepath leads to code injection. This vulnerability is traded as CVE-2009-0527. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

说明：接下来的操作会.. 阅读更多

疯狂邪恶团伙利用StealC、AMOS和Angel Drainer恶意软件，针对加密货币用户发起攻击，已窃取超过500万美元，威胁全球数万台设备。

A vulnerability, which was classified as critical, was found in Apple tvOS up to 11.1. Affected is an unknown function of the component IOSurface. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2017-13861. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.