《终端计算机通用安全技术规范》等3项网络安全国家标准获批发布
根据2024年10月26日国家市场监督管理总局、国家标准化管理委员会发布的中华人民共和国国家标准公告(2024年第24号),全国网络安全标准化技术委员会归口的3项国家标准正式发布。工程中心参编的GB/
Aggregator
预付全款!看雪课程讲师招募中
8 months 3 weeks ago
未来世界离不开互联网,企业运作离不开网络安全。网络攻击、数据泄露的风险日益增加,培养优秀的网络安全人才已成为当务之急。为了更好地打造高质量精品课程,平台推出“预付全款”模式,将根据讲师提供的课程大纲、
Ollama AI框架发现严重漏洞,可能导致 DoS、模型盗窃和中毒
8 months 3 weeks ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
全是干货!2024 vivo千镜安全实验室技术沙龙报名开启
8 months 3 weeks ago
为建立高效的对外沟通渠道,在获取安全相关的行业现状和未来趋势的同时,积极分享vivo最佳安全实践,以帮助企业在安全管理方面更好地把握机遇和迎接挑战。vivo千镜安全实验室技术系列沙龙将于11月16日1
SDC2024 议题回顾 | 工控系统供应链攻击大揭秘
8 months 3 weeks ago
“ XZ Utils压缩库后门、CrowdStrike更新导致Windows蓝屏、黎巴嫩数千个传呼机爆炸等热点安全事件再一次敲响了供应链安全的警钟。近年来,工控系统供应链攻击频发, Codesys R
字节最新单图视频驱动成果X-Portrait 2:一键生成相同表情神态,效果逼真
8 months 3 weeks ago
单图视频驱动技术为创作富有表现力、逼真的角色动画和视频片段提供了一种成本极低且高效的方法:只需一张静态照片和一段驱动视频即可生成高质量、电影级的视频。字节跳动智能创作团队近期推出最新单图视频驱动技术X
Play
8 months 3 weeks ago
cohenido
《虚拟币硬件钱包使用攻略及实战指南》,信息获取、资产固定...一册搞定!(限量200份)
8 months 3 weeks ago
《虚拟币硬件钱包使用攻略及实战指南》,信息获取、资产固定...一册搞定!(限量200份)
8 months 3 weeks ago
《虚拟币硬件钱包使用攻略及实战指南》,信息获取、资产固定...一册搞定!(限量200份)
8 months 3 weeks ago
《虚拟币硬件钱包使用攻略及实战指南》,信息获取、资产固定...一册搞定!(限量200份)
8 months 3 weeks ago
《虚拟币硬件钱包使用攻略及实战指南》,信息获取、资产固定...一册搞定!(限量200份)
8 months 3 weeks ago
真实评测计划:入手红米turbo3,大强度试用一个月,告诉你真正的使用感受
8 months 3 weeks ago
作为一个科技类的自媒体人,对于软件使用技巧、各类数码评测,那简直是发自内心的喜欢。但对于手机类的评测,有个很大的感受就是:没人说话了,全在扒通稿。评测华为,就告诉你这手机是什么cpu、屏幕多大、摄像头
Synology:速修复零点击RCE漏洞,影响数百万 NAS 设备
8 months 3 weeks ago
聚焦源代码安全,网罗国内外最新资讯!编译:代码卫士Synology 已修复影响 DiskStation 和 BeePhotos 的一个严重漏洞,可导致远程代码执行后果,编号是CVE-2024-104
谷歌修复已遭利用的两个安卓 0day 漏洞
8 months 3 weeks ago
聚焦源代码安全,网罗国内外最新资讯!编译:代码卫士谷歌在十一月补丁更新中修复了两个已遭活跃利用的安卓 0day,共计修复51个漏洞。这两个漏洞是CVE-2024-43047和CVE-2024-430
CVE-2024-26843 | Linux Kernel up to 5.10.210/5.15.149/6.1.79/6.6.18/6.7.6 efi md_size buffer overflow
8 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.210/5.15.149/6.1.79/6.6.18/6.7.6. Affected by this issue is the function md_size of the component efi. The manipulation leads to buffer overflow.
This vulnerability is handled as CVE-2024-26843. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2019-19754 | HiveOS up to 0.6-102@191212 SSH Host Key hard-coded key
8 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in HiveOS up to 0.6-102@191212. This affects an unknown part of the component SSH Host Key Handler. The manipulation leads to use of hard-coded cryptographic key
.
This vulnerability is uniquely identified as CVE-2019-19754. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-27073 | Linux Kernel up to 6.8.1 ttpci budget_av_attach memory leak
8 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.8.1. It has been rated as critical. Affected by this issue is the function budget_av_attach of the component ttpci. The manipulation leads to memory leak.
This vulnerability is handled as CVE-2024-27073. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-27054 | Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1 s390 Privilege Escalation
8 months 3 weeks ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1. Affected is an unknown function of the component s390. The manipulation leads to Privilege Escalation.
This vulnerability is traded as CVE-2024-27054. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-33921 | ReviewX Plugin up to 1.6.21 on WordPress access control
8 months 3 weeks ago
A vulnerability classified as critical has been found in ReviewX Plugin up to 1.6.21 on WordPress. This affects an unknown part. The manipulation leads to improper access controls.
This vulnerability is uniquely identified as CVE-2024-33921. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com