New Linux-based ransomware targets VMware servers
Researchers at Trend Micro have discovered some new Linux-based ransomware that's being used to attack VMware ESXi servers, a bare-metal hypervisor for creating and running...
Rapidly evolving IoT malware EnemyBot now targeting Content Management System servers and Android devices
Executive summary AT&T Alien Labs™ has been tracking a new IoT botnet dubbed “EnemyBot”, which is believed to be distributed by threat actor Keksec. During...
CVE-2021-28509
This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of...
CVE-2021-28508
This advisory documents the impact of an internally found vulnerability in Arista EOS state streaming telemetry agent TerminAttr and OpenConfig transport protocols. The impact of...
CWE-69 – Improper Handling of Windows ::DATA Alternate Data Stream
Description The software does not properly prevent access to, or detect usage of, alternate data streams (ADS). An attacker can use an ADS to hide...
CWE-689 – Permission Race Condition During Resource Copy
Description The product, while copying or cloning a resource, does not set the resource's permissions or access control until the copy is complete, leaving the...
CWE-688 – Function Call With Incorrect Variable or Reference as Argument
Description The software calls a function, procedure, or routine, but the caller specifies the wrong variable or reference as one of the arguments, which may...
CWE-687 – Function Call With Incorrectly Specified Argument Value
Description The software calls a function, procedure, or routine, but the caller specifies an argument that contains the wrong value, which may lead to resultant...
CWE-686 – Function Call With Incorrect Argument Type
Description The software calls a function, procedure, or routine, but the caller specifies an argument that is the wrong data type, which may lead to...
CWE-685 – Function Call With Incorrect Number of Arguments
Description The software calls a function, procedure, or routine, but the caller specifies too many arguments, or too few arguments, which may lead to undefined...