ZDI-22-1038: Lexmark MC3224i Firmware Downgrade Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark MC3224i printers. Authentication is not required to exploit this vulnerability. Read...
ZDI-22-1036: NetBSD Kernel stat System Call Uninitialized Memory Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of NetBSD Kernel. An attacker must first obtain the ability to execute low-privileged...
ZDI-22-1037: NetBSD Kernel getkerninfo System Call Uninitialized Memory Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of NetBSD Kernel. An attacker must first obtain the ability to execute low-privileged...
Traceable AI adds eBPF to security platform for deeper API observability and visibility
API security firm Traceable AI has announced the addition of extended Berkeley Packet Filter (eBPF) data to its platform to enhance API observability and visibility....
Backdoor.Win32.Destrukor.20 / Unauthenticated Remote Command Execution
Posted by malvuln on Aug 01 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/c790749f851d48e66e7d59cc2e451956_B.txt Contact: malvuln13 () gmail com Media:...
Backdoor.Win32.Destrukor.20 / Authentication Bypass
Posted by malvuln on Aug 01 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/c790749f851d48e66e7d59cc2e451956.txt Contact: malvuln13 () gmail com Media:...
DSA-5198 jetty9 – security update
Two security vulnerabilities were discovered in Jetty, a Java servlet engine and webserver. Read More
webkit2gtk3-2.36.5-2.fc35
FEDORA-2022-513f28a4be Packages in this update: webkit2gtk3-2.36.5-2.fc35 Update description: Add support for PAC proxy in the WebDriver implementation. Fix video playback when loaded through custom URIs,...
Living off the Land: The Power Behind PowerShell
CIS has released a guide that provides organizations with a strategic and multi-faceted approach for securing against attacks using PowerShell. Read More
golang-1.17.12-1.el7
FEDORA-EPEL-2022-ced30d9530 Packages in this update: golang-1.17.12-1.el7 Update description: Update to 1.17.12, security fixes for CVE-2022-30629, CVE-2022-1705, CVE-2022-32148, CVE-2022-30631, CVE-2022-28131, CVE-2022-30633, CVE-2022-30632, CVE-2022-30635, CVE-2022-30630, CVE-2022-1962 Read...