Aggregator

A vulnerability was found in Linux Kernel up to 6.8.9. It has been classified as problematic. Affected is the function bad_inode. The manipulation leads to uninitialized pointer. This vulnerability is traded as CVE-2024-36923. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.43/6.10.2. It has been declared as critical. Affected by this vulnerability is the function ip_vs_add_service of the file net/netfilter/ipvs/ip_vs_ctl.c. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-42322. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Oracle Communications Element Manager 8.1.1/8.2.0/8.2.1. Affected is an unknown function of the component User Interface. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2020-11022. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

小米加入 CSA 大中华区

小米加入 CSA 大中华区

小米加入 CSA 大中华区

小米加入 CSA 大中华区

小米加入 CSA 大中华区

A vulnerability was found in Moodle up to 2.1.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to code injection. This vulnerability is handled as CVE-2013-3630. The attack may be launched remotely. Furthermore, there is an exploit available.

Ever wonder what happens in the digital world every time you blink? Here's something wild - hackers launch about 2,200 attacks every single day, which means someone's trying to break into a system somewhere every 39 seconds. And get this - while we're all worried about regular hackers, there are now AI systems out there that can craft phishing emails so convincingly, that even cybersecurity

A vulnerability classified as problematic has been found in Zoho ManageEngine EventLog Analyzer up to 10.0 SP1. Affected is an unknown function of the file /event/runquery.do. The manipulation leads to information disclosure (MD5). This vulnerability is traded as CVE-2019-19774. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

国家顶级域名.CV目前正在开放注册中 甚至还有单字母域名可以注册就是非常贵

Recent research uncovered a novel crypto-jacking attack targeting the Python Package Index (PyPI), where malicious actors uploaded a legitimate-seeming cryptocurrency client package, “aiocpa,” to gradually build a user base.  Subsequently, a malicious update was pushed, compromising user wallets. By utilizing differential analysis, it was identified that the exact techniques employed by the attackers to execute […]

The post Beware Of Malicious PyPI Packages That Inject infostealer Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Microsoft Windows 7 SP1/Server 2008 R2 SP1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Task Scheduler. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2015-0098. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.