Aggregator

A vulnerability has been found in Google Android and classified as problematic. This vulnerability affects the function ppmpu_set of the file ppmpu.c. The manipulation leads to integer overflow. This vulnerability is referenced as CVE-2022-20597. The attack can only be performed from a local environment. No exploit is available. It is suggested to install a patch to address this issue.

A vulnerability has been found in Google Android 23970013 and classified as problematic. This affects the function getWpcAuthChallengeResponse of the file WirelessCharger.cpp. Performing a manipulation results in out-of-bounds read. This vulnerability is cataloged as CVE-2022-20595. The attack must be initiated from a local position. There is no exploit available. It is suggested to install a patch to address this issue.

Всего две добавки — и батарея перестала умирать.

Nine out of ten cyber attacks start with phishing. When an incident occurs, it’s often a person who’s held accountable: a compromised employee or a SOC analyst who missed a signal.  But in a corporate environment, this framing doesn’t always apply. If a single human mistake puts the entire company at stake, the real issue might be the lack of a specific phishing defense layer.  Its presence significantly lowers the odds of […]

The post The Phishing Defense Layer Top CISOs Never Miss  appeared first on Cyber Security News.

网络安全技术 网络空间安全图谱要素表示方法 by ourren

AI重塑网络安全：网络安全智能化产品与市场报告 by ourren

更多最新文章，请访问SecWiki

A vulnerability classified as critical was found in Jupyter nbconvert up to 7.17.0. The affected element is an unknown function. The manipulation results in path traversal. This vulnerability is identified as CVE-2026-39378. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability labeled as problematic has been found in Coturn up to 4.9.x. Impacted is an unknown function. Such manipulation leads to incorrect type conversion. This vulnerability is referenced as CVE-2026-40613. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.

A vulnerability categorized as problematic has been discovered in mitmproxy up to 12.2.1. This vulnerability affects unknown code. The manipulation results in ldap injection. This vulnerability was named CVE-2026-40606. The attack may be performed from remote. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in jupyter nbconvert up to 7.17.0. Impacted is an unknown function of the component Jinja Template Handler. The manipulation leads to path traversal. This vulnerability is referenced as CVE-2026-39377. Remote exploitation of the attack is possible. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Firefox up to 149 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Web Codecs. The manipulation results in uninitialized pointer. This vulnerability is identified as CVE-2026-6751. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.

声明:下面内容均未得到独立第三方的验证，且消息来源为伊朗媒体。 近日，伊朗多家媒体发布消息称，在美军与以色列针对伊朗的军事行动期间，多家国际知名厂商的网络设备出现大规模异常故障。 伊朗方面表示，这些设备在伊朗已切断全球互联网连接的情况下依然集体失灵，这一现象指向了有预谋的深度网络破坏行为。 本次被点名的设备厂商包括Cisco、Juniper Networks）、Fortinet和 MikroTik，其表示美国制造的这些设备在伊斯法罕遭袭的关键时刻集体失效，大量设备出现自动重启或网络断开的情况。 由于事发时伊朗已经主动切断了与全球互联网的物理连接，伊朗方面据此推断，攻击者利用了设备中预先植入的隐藏固件或后门程序实施远程破坏，触发方式可能是卫星信号传输，也可能是预先设定的定时指令。 截至目前，美国官方尚未对伊朗提出的 “利用设备后门实施破坏” 这一具体指控作出直接回应，但已公开承认对伊朗的通信基础设施发动了网络攻击。 尽管伊朗的指控仍待核实，但本次被点名的四家网络设备厂商，均曾被曝光存在严重的安全漏洞或后门相关问题。 思科（Cisco） 2014 年，爱德华・斯诺登泄露的美国国家安全局（NSA）文件显示，NSA 下属的定制接入行动（Tailored Access Operations）部门长期执行一项秘密计划。该部门会在思科路由器的运输途中进行拦截，在设备中安装监控植入程序后再重新包装交付给客户。思科公司事后明确表示从未配合过该计划，并随后采取了将设备运往诱饵地址等措施，以干扰 NSA 的运输拦截行为。 瞻博网络（Juniper Networks） 2015 年，瞻博网络公开披露，其 NetScreen 系列防火墙所运行的 ScreenOS 固件中被发现存在未授权代码。该恶意代码可让攻击者绕过设备的身份验证机制，同时能够解密通过该防火墙传输的虚拟专用网络（VPN）流量。这一事件影响了全球大量政府和企业用户的网络安全。 飞塔（Fortinet） 2016 年，飞塔公司承认，其 FortiOS 操作系统的旧版本中存在硬编码的安全外壳协议（SSH）密码。攻击者可利用该密码获得设备的远程访问权限。飞塔公司当时将这一问题定性为 “管理身份验证漏洞”，并迅速发布了安全补丁。 MikroTik 来自拉脱维亚的 MikroTik 路由器长期以来都是全球僵尸网络（Botnet）运营商的主要攻击目标。2019 年，网络安全公司 Tenable 披露了一个针对 MikroTik 设备的完整漏洞链。攻击者可利用该漏洞链降级设备固件版本，并在设备中创建持久后门，实现对设备的长期控制。

A vulnerability was found in Silverpeas Core up to 6.4.5. It has been declared as problematic. The affected element is the function AdvancedSearch. The manipulation results in cross site scripting. This vulnerability is known as CVE-2026-30139. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in 94Cb Carbon Forum 5.9.0. It has been classified as problematic. Impacted is an unknown function of the component Setting Handler. The manipulation of the argument Forum Name leads to cross site scripting. This vulnerability is traded as CVE-2024-58344. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Textpad 8.1.2 and classified as critical. This issue affects some unknown processing of the component Run Command Interface. Executing a manipulation can lead to out-of-bounds write. This vulnerability appears as CVE-2018-25271. The attack requires local access. In addition, an exploit is available.

A vulnerability has been found in Icewarp Client 10.3.4/11.0.0.0 and classified as problematic. This vulnerability affects unknown code of the component HTML Element Handler. Performing a manipulation results in HTML injection. This vulnerability is reported as CVE-2018-25269. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability, which was classified as critical, was found in UltraISO 9.7.1.3519. This affects an unknown part. Such manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2018-25267. The attack needs to be performed locally. Additionally, an exploit exists.

A vulnerability, which was classified as critical, has been found in Angryip Angry IP Scanner 3.11. Affected by this issue is some unknown functionality. This manipulation of the argument unavailable value causes out-of-bounds write. This vulnerability is registered as CVE-2018-25266. The attack needs to be launched locally. Furthermore, an exploit is available.

A vulnerability classified as critical was found in Lizardsystems Terminal Services Manager 3.1. Affected by this vulnerability is an unknown functionality. The manipulation of the argument computer names results in stack-based buffer overflow. This vulnerability is cataloged as CVE-2018-25259. The attack must be initiated from a local position. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Lizardsystems LanSpy 2.0.1.159. Affected is an unknown function. The manipulation of the argument scan leads to out-of-bounds write. This vulnerability is listed as CVE-2018-25268. The attack must be carried out locally. In addition, an exploit is available.

A vulnerability described as critical has been identified in Lizardsystems LanSpy 2.0.1.159. This impacts an unknown function. Executing a manipulation can lead to out-of-bounds write. This vulnerability is tracked as CVE-2018-25265. The attack is restricted to local execution. Moreover, an exploit is present.