Aggregator

A vulnerability was found in IP-COM EW9 15.11.0.14. It has been classified as problematic. Affected is the function formSetDebugCfg. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2022-43365. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in IP-COM EW9 15.11.0.14. It has been rated as critical. This issue affects the function formSetDebugCfg. The manipulation leads to command injection. The identification of this vulnerability is CVE-2022-43367. Access to the local network is required for this attack. There is no exploit available.

A vulnerability, which was classified as critical, was found in IP-COM EW9 15.11.0.14. This affects an unknown part. The manipulation leads to weak password recovery. This vulnerability is uniquely identified as CVE-2022-43364. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability has been found in IP-COM EW9 15.11.0.14 and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument checkLoginUser/ate/telnet/version/setDebugCfg/boot leads to information disclosure. This vulnerability was named CVE-2022-43366. The attack needs to be done within the local network. There is no exploit available.

A vulnerability classified as problematic was found in dzzoffice 2.02.1_SC_UTF8. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2022-43340. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Employee Record Management System 1.2. Affected by this issue is some unknown functionality of the file editempprofile.php. The manipulation leads to sql injection. This vulnerability is handled as CVE-2021-37782. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Oracle Business Intelligence Enterprise Edition 12.2.1.4.0. This issue affects some unknown processing of the component Analytics Web General. The manipulation leads to Remote Code Execution. The identification of this vulnerability is CVE-2020-28052. The attack may be initiated remotely. There is no exploit available.

HackerNews 编译，转载请注明出处： 德国联邦刑事警察局（BKA）以涉嫌洗钱和运营犯罪交易平台为由，查封了加密货币交易所eXch的线上基础设施并关闭其服务。 当局称，此次行动于2025年4月30日开展，并查获了8TB数据以及价值3400万欧元（约合3825万美元）的加密货币资产，包括比特币、以太币、莱特币和达世币。 据BKA披露，eXch[.]cx自2014年运营至今，提供加密货币兑换服务，用户可通过该平台交易数字资产。该平台同时存在于明网（clearnet）和暗网（dark web）。 BKA在一份声明中表示，eXch“在犯罪地下经济（UE）平台中公开宣称不实施任何反洗钱措施”，且“用户无需向服务提供身份信息，平台也不会存储用户数据。因此，通过eXch进行的加密货币兑换尤其适合掩盖资金流向”。 自平台上线以来，估计有价值19亿美元的加密货币资产通过其完成转移，其中包括朝鲜黑客组织今年早些时候入侵Bybit后获得的部分非法收益。 值得注意的是，eXch曾于4月17日宣布计划于本月停止运营，此举促使当局提前行动以获取“大量证据和线索”。 在BitcoinTalk论坛的一则帖子中，eXch声称关闭服务的理由是“已确认平台成为一项跨大西洋执法行动的目标，旨在强制关闭我们的项目并以‘洗钱和恐怖主义’罪名起诉我们”。其辩称：“我们从未想过支持洗钱或恐怖主义等非法活动，也绝无动机运营一个被视为犯罪的项目。这毫无意义。” 区块链情报公司TRM Labs在5月2日发布的报告中指出，eXch的链上活动与儿童性虐待材料（CSAM）犯罪组织有关，且该平台直接经手超过30万美元的CSAM相关资金。报告称：“尽管eXch以隐私保护型交易所自居，但其以阻碍生态问责而闻名，例如拒绝协助Bybit冻结可能与其黑客事件相关的资金。” 在平台被取缔后，荷兰财政情报和调查局（FIOD）表示“正积极调查通过该兑换服务参与洗钱及其他非法活动的个人”，并强调：“此次行动并非对隐私权的攻击。我们尊重隐私权，但也将在服务被滥用于犯罪时采取行动。请相关人士立即停止违法行为——问题不在隐私，而在犯罪滥用。”       消息来源：thehackernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

A vulnerability was found in D-Link DNS-320 and DNS-320LW and classified as critical. Affected by this issue is the function cgi_chg_admin_pw of the file account_mgr.cgi. The manipulation leads to privilege escalation. This vulnerability is handled as CVE-2025-44023. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in TOTOLINK A3100R 5.9c.1527. It has been rated as critical. This issue affects the function setMacFilterRules. The manipulation of the argument Comment leads to buffer overflow. The identification of this vulnerability is CVE-2025-45788. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical has been found in zenml-io ZenML up to 0.55.4. Affected is an unknown function of the file /api/v1/steps of the component Endpoint. The manipulation leads to path traversal: '\..\filename'. This vulnerability is traded as CVE-2024-2083. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Digi International Digi PortServer TS, Digi One SP, Digi One SP IA, Digi One IA and Digi One IAP. It has been rated as critical. This issue affects some unknown processing of the component HTTP POST Request Handler. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2025-3659. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0. This vulnerability affects unknown code of the component Request Path Handler. The manipulation leads to resource consumption. This vulnerability was named CVE-2024-22091. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Mattermost up to 8.1.11/9.4.4/9.5.2/9.6.0. This issue affects the function getSessions of the component API. The manipulation leads to resource consumption. The identification of this vulnerability is CVE-2024-4183. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in registry-support. It has been classified as problematic. This affects an unknown part of the component Decompression Handler. The manipulation leads to relative path traversal. This vulnerability is uniquely identified as CVE-2024-1485. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

Alabama Ophthalmology Practice, California Dental Clinic Report Breaches
Cybercriminal gang BianLian claims to have stolen patient information in two recent hacks of an Alabama-based ophthalmology practice and a California dental clinic. The two incidents affected nearly 150,000 people and are among the extortion group's latest attacks on the healthcare sector.

Machine Learning, Generative AI Bolster Continuous User Authentication
Financial institutions can use AI-fueled behavioral biometrics for real-time identity assurance. By continuously profiling how users interact with devices, firms can shift from one-time authentication to real-time identity assurance, turning every click, pause and keystroke into a frontline defense.

Analysts Warn White House IT Plan Could Conflict With Deregulation Directives
Experts warn a new strategy that aims to centralize federal IT procurement under the General Services Administration with standardized terms and deep vendor discounts may actually undermine deregulation goals while excluding small vendors and clashing with agency-specific cybersecurity mandates.

Panasonicが提供するIR Control Hubには、不正なファームウェアのロードにつながる脆弱性が存在します。

下一站，再见。