Read Time:5 Second
Attackers could exploit it by sending a specially crafted message to an affected system node
Daily Archives: November 9, 2022
GitHub releases new SDLC security features including private vulnerability reporting
Read Time:28 Second
GitHub has announced new security features across its platform to help protect the software development lifecycle (SDLC). These include private vulnerability reporting, CodeQL vulnerability scanning support for the Ruby programming language, and two new security overview options. The world’s leading development platform said these updates make securing the SDLC end-to-end easier and more seamless for developers. The releases come as SDLC cybersecurity remains high on the agenda with research revealing an increase of almost 800% in software supply chain attacks.
Multiple Vulnerabilities in VMware Workspace ONE Assist Could Allow for Privilege Escalation
Read Time:23 Second
Multiple vulnerabilities have been discovered in VMware Workspace ONE Assist, the most severe of which could allow for privilege escalation. VMware Workspace ONE Assist is a remote access tool used to remotely access and troubleshoot VMware devices. Successful exploitation of the most severe of these vulnerabilities could allow for privilege escalation and possibly obtaining administrative access. Depending on the permissions associated with the user account compromised, an attacker could then install programs; view, change, or delete data.
CVE-2021-34579
Read Time:24 Second
In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.Attackers with network access to the Apache web server can download and therefore read mGuard configuration profiles (“ATV profiles�). Such configuration profiles may contain sensitive information, e.g. private keys associated with IPsec VPN connections.
CVE-2021-34577
Read Time:9 Second
In the Kaden PICOFLUX AiR water meter an adversary can read the values through wireless M-Bus mode 5 with a hardcoded shared key while being adjacent to the device.
Malicious Package on PyPI Hides Behind Image Files, Spreads Via GitHub
Read Time:4 Second
The findings indicate that PyPI malicious packages and their obfuscation techniques are evolving
Having refused to pay ransom, health insurer Medibank sees customer data posted online by hackers
Read Time:15 Second
A ransomware gang has begun to publish data on the dark web stolen from Australia’s largest health insurer Medibank.
Curiously, the hackers have released details of insured customers, sorted into two files bearing the label “naughty-list” and “good-list.”
Read more in my article on the Hot for Security blog.
CVE-2021-34569
Read Time:9 Second
In WAGO I/O-Check Service in multiple products an attacker can send a specially crafted packet containing OS commands to crash the diagnostic tool and write memory.
CVE-2021-34568
Read Time:9 Second
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service.
CVE-2021-34567
Read Time:11 Second
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to provoke a denial of service and an limited out-of-bounds read.