Ugrás a tartalomra
Abstract art
Abstract art
Abstract art
Abstract art

Szolgáltatóknak

Böngésszen szolgáltatóknak szóló tartalmaink között.

2024. dec. 11.
Riasztás

NA - CVE-2024-11598 - Under specific circumstances, insecure...

Under specific circumstances, insecure permissions in Ivanti Application Control before version 2024.3 HF1, 2024.1 HF2, or 2023.3 HF3 allows a local authenticated attacker to achieve local...
security-database.com
Tovább
2024. dec. 11.
Riasztás

NA - CVE-2024-47760 - GLPI is a free asset and IT management software...

GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.17, a technician with an access to the API can take control of an account with higher...
security-database.com
Tovább
2024. dec. 11.
Riasztás

NA - CVE-2024-47761 - GLPI is a free asset and IT management software...

GLPI is a free asset and IT management software package. Starting in version 0.80 and prior to version 10.0.17, an administrator with access to the sent notifications contents can take control of...
security-database.com
Tovább
2024. dec. 11.
Riasztás

NA - CVE-2024-48912 - GLPI is a free asset and IT management software...

GLPI is a free asset and IT management software package. Starting in version 0.80 and prior to version 10.0.17, an authenticated user can use an application endpoint to delete any user account....
security-database.com
Tovább
2024. dec. 11.
Riasztás

NA - CVE-2024-8496 - Under specific circumstances, insecure...

Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker to achieve local privilege escalation.
security-database.com
Tovább
2024. dec. 11.
Riasztás

NA - CVE-2024-9845 - Under specific circumstances, insecure...

Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to achieve local privilege escalation.
security-database.com
Tovább
2024. dec. 10.
Biztonsági szemle

Microsoft fixes 72 vulnerabilities in final 2024 Patch Tuesday

Sixteen critical flaws and 54 bugs designated as important priorities fixed for Windows, Office and Edge.
scmagazine.com
Tovább
2024. dec. 10.
Biztonsági szemle

FCC Proposes New Cybersecurity Rules for Telecoms

FCC Chairwoman Jessica Rosenworcel recommended "urgent action" to safeguard the nation's communications systems from real and present cybersecurity threats.
darkreading.com
Tovább
2024. dec. 10.
Biztonsági szemle

Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch Tuesday

The zero-day (CVE-2024-49138), plus a worryingly critical unauthenticated RCE security vulnerability (CVE-2024-49112), are unwanted gifts for security admins this season.
darkreading.com
Tovább
2024. dec. 10.
Biztonsági szemle

Critical OpenWrt bug enabling malicious firmware image installation addressed

Such a flaw, which could be exploited without authentication, stems from a command injection issue in Imagebuilder that enables arbitrary command injections in the build process and truncated SHA-256 hash collisions that allow reduced entropy that ultimately results in artifact cache compromise, according to OpenWrt.
scmagazine.com
Tovább
Nyelv
Típus