Read Time:5 Second
SEC Consult found a series of critical vulnerabilities affecting Infiray thermal cameras in Feb 2021
Monthly Archives: June 2022
python-cookiecutter-2.1.1-1.fc35
Read Time:8 Second
FEDORA-2022-4a3d83a1d2
Packages in this update:
python-cookiecutter-2.1.1-1.fc35
Update description:
Update to version 2.1.1 CVE-2022-24065
You can be tracked via your Bluetooth signal, researchers claim
Read Time:12 Second
Boffins at the University of California San Diego have found a way to track individuals via Bluetooth.
Researchers discovered that the Bluetooth signals emitted by mobile phones carry a unique fingerprint, caused by small imperfections accidentally created during the manufacturing process.
python-cookiecutter-2.1.1-1.fc36
Read Time:8 Second
FEDORA-2022-ff1c98b2fe
Packages in this update:
python-cookiecutter-2.1.1-1.fc36
Update description:
Update to version 2.1.1 fixing CVE-2022-24065
DogWalk zero-day Windows bug receives patch – but not from Microsoft
Read Time:12 Second
A Windows zero-day vulnerability dubbed “DogWalk” has not received an official patch yet from Microsoft, but that hasn’t stopped others from offering free fixes to protect users.
Read more in my article on the Hot for Security blog.
#RSAC: “Users Are Not Stupid, So Don’t Treat Them Like They Are”
CVE-2017-20036
Read Time:20 Second
A vulnerability, which was classified as problematic, was found in PHPList 3.2.6. Affected is an unknown function of the file /lists/admin/ of the component Bounce Rule. The manipulation leads to cross site scripting (Persistent). It is possible to launch the attack remotely. Upgrading to version 3.3.1 is able to address this issue. It is recommended to upgrade the affected component.
CVE-2017-20035
Read Time:19 Second
A vulnerability, which was classified as problematic, has been found in PHPList 3.2.6. This issue affects some unknown processing of the file /lists/admin/ of the component Subscribe. The manipulation leads to cross site scripting (Persistent). The attack may be initiated remotely. Upgrading to version 3.3.1 is able to address this issue. It is recommended to upgrade the affected component.
CVE-2017-20034
Read Time:18 Second
A vulnerability classified as problematic was found in PHPList 3.2.6. This vulnerability affects unknown code of the file /lists/admin/ of the component List Name. The manipulation leads to cross site scripting (Persistent). The attack can be initiated remotely. Upgrading to version 3.3.1 is able to address this issue. It is recommended to upgrade the affected component.
CVE-2017-20033
Read Time:23 Second
A vulnerability classified as problematic has been found in PHPList 3.2.6. This affects an unknown part of the file /lists/admin/. The manipulation of the argument page with the input send'”;><script>alert(8)</script> leads to cross site scripting (Reflected). It is possible to initiate the attack remotely. Upgrading to version 3.3.1 is able to address this issue. It is recommended to upgrade the affected component.