Aggregator

HomemacOSCleanShot X – 专业 Mac 截图、录屏神器，双11限时 8 折优惠中

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-43093 Android Framework Privilege Escalation Vulnerability
• CVE-2024-51567 CyberPanel Incorrect Default Permissions Vulnerability
• CVE-2019-16278 Nostromo nhttpd Directory Traversal Vulnerability
• CVE-2024-5910 Palo Alto Expedition Missing Authentication Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

CISA released three Industrial Control Systems (ICS) advisories on November 7, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-312-01 Beckhoff Automation TwinCAT Package Manager
• ICSA-24-312-02 Delta Electronics DIAScreen
• ICSA-24-312-03 Bosch Rexroth IndraDrive

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

This product is provided subject to this Notification and this Privacy & Use policy.

Defending your organization’s security is like fortifying a castle—you need to understand where attackers will strike and how they’ll try to breach your walls. And hackers are always searching for weaknesses, whether it’s a lax password policy or a forgotten backdoor. To build a stronger defense, you must think like a hacker and anticipate their moves. Read on to learn more about hackers'

胡金鱼

优惠上架 | 用 Zeabur 轻松自托管开源服务 今年早些时候，我们与新兴云端部署服务 Zeabur 合作，举办了一次「自力更生」征文活动。如我们在发起活动时所说，虽然主流服务越发被个别巨头所垄断

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/login_process.php of the component Login. The manipulation of the argument unm leads to sql injection. This vulnerability is handled as CVE-2024-10969. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /contact_process.php. The manipulation of the argument fnm leads to sql injection. This vulnerability is known as CVE-2024-10968. The attack can be launched remotely. Furthermore, there is an exploit available.

Submit #437416 / VDB-283418

Submit #437322 / VDB-283417

A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected is an unknown function of the file /Doctor/delete_user_appointment_request.php. The manipulation of the argument id leads to sql injection. This vulnerability is traded as CVE-2024-10967. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Check Point ClusterXL, Multi-Domain Security Management, Quantum Appliances, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways and Quantum Security Management R81/R81.10/R81.20 and classified as critical. This issue affects some unknown processing of the component Global Variable Handler. The manipulation leads to improper control of dynamically-identified variables. The identification of this vulnerability is CVE-2024-24914. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to apply a patch to fix this issue.

North Korean hackers are targeting crypto-related businesses with phishing emails and novel macOS-specific malware. The crypto-related phishing campaign Since July 2024, phishing emails seemingly containing helpful information on risks related to the rise of the price of Bitcoin have been sent to intended victims in cryptocurrency-related industries, SentinelLabs researchers have found. The phishing email (Source: SentinelLabs) The email urges the recipient to click on the “Open” button to download a PDF file, but doing that … More →

The post North Korean hackers employ new tactics to compromise crypto-related businesses appeared first on Help Net Security.

Submit #437312 / VDB-283416

加拿大以国家安全为由禁止 TikTok 在其境内运营，但该国居民仍然可以自由使用 TikTok。创新部长 Francois-Philippe Champagne 表示，使用社媒应用或平台的

构建黑灰产交易风险全景图，全面了解黑灰产交易商品动态，快速、精准定位业务风险。

A vulnerability has been found in Linux-PAM and classified as problematic. This vulnerability affects unknown code of the file access.conf of the component pam_access. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-10963. Access to the local network is required for this attack. There is no exploit available.

Бенгальские кошки стали мишенью для новой кибератаки.

A vulnerability, which was classified as critical, was found in Rapid7 Velociraptor up to 0.73.2. This affects an unknown part of the component MSI Installer. The manipulation leads to files or directories accessible. This vulnerability is uniquely identified as CVE-2024-10526. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

主站 分类 漏洞 工具 极客