Aggregator

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been classified as critical. This affects the function iptablesWebsFilterRun. The manipulation leads to command injection. This vulnerability is uniquely identified as CVE-2024-46330. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to hard-coded credentials. This vulnerability was named CVE-2024-46328. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been rated as critical. This issue affects the function Http_handle. The manipulation leads to path traversal. The identification of this vulnerability is CVE-2024-46327. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability was found in Android Excellence 1.4.1 and classified as critical. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-7111. Access to the local network is required for this attack. There is no exploit available.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.10.9. Affected is an unknown function of the component btrfs. The manipulation leads to improper update of reference count. This vulnerability is traded as CVE-2024-46751. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.8. It has been declared as critical. Affected by this vulnerability is the function otg_master of the component AMD Display. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-46727. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Apple watchOS up to 2.2.1. This issue affects some unknown processing of the component Kernel. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2016-1865. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in NeoRecruit 1.4 on Joomla. This affects an unknown part of the file index.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2007-4506. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Hold onto your hats, folks, because the cybersecurity world is anything but quiet! Last week, we dodged a bullet when we discovered vulnerabilities in CUPS that could've opened the door to remote attacks. Google's switch to Rust is paying off big time, slashing memory-related vulnerabilities in Android. But it wasn't all good news – Kaspersky's forced exit from the US market left users with more

A vulnerability was found in Vercom Redlink SDK up to 1.13. It has been classified as problematic. Affected is an unknown function. The manipulation leads to improper control of resource identifiers. This vulnerability is traded as CVE-2024-6051. Local access is required to approach this attack. There is no exploit available.

A vulnerability was found in Solvait 24.4.2 and classified as problematic. This issue affects some unknown processing of the component Intrest Feature. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-45920. The attack may be initiated remotely. There is no exploit available.

Malware is a major risk to enterprises of all shapes and sizes. It takes on many forms to be harder to detect and protect against, increasing the danger it presents. By better understanding what types of malware exist, which are most common, and what their telltale signs are, enterprises can better defend their...

Check out some event highlights from this year's LABScon24, hosted by SentinelLabs, which gathers the cyber defense industry's finest minds.

The post LABScon24 Highlights | Examining The Latest in Cybersecurity Trends & Challenges appeared first on SentinelOne.

Основатель SpaceX предсказал битвы «роев беспилотников».

Recapping all the big announcements made during 2024’s Birthday Week.

The new Carbon Calculator is supported by the latest reporting API framework, improves performance, and allows customers to monitor up to 400 days of data.

Apono is proud to announce the successful completion of its Series A funding round, raising $15.5 million to further its mission of delivering AI-driven cloud access governance. This funding round, led by New Era Capital Partners with participation from Mindset Ventures, Redseed Ventures, Silvertech Ventures, and existing investors, brings Apono’s total investment to $20.5 million. […]

The post Apono Secures $15.5M Series A Funding to Revolutionize Cloud Access Security appeared first on Security Boulevard.

A vulnerability was found in Apple iOS up to 10.3.1. It has been rated as critical. This issue affects some unknown processing of the component AVEVideoEncoder. The manipulation as part of Application leads to memory corruption. The identification of this vulnerability is CVE-2017-6999. Attacking locally is a requirement. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

This video tutorial demonstrates how to open capture files with NetworkMiner Professional The analyzed pcap-ng file is github.pcapng from CloudShark. More info about this capture file can be found in our blog post Forensics of Chinese MITM on GitHub. See our NetworkMiner Professional tutorial videos[...]