woff-0.20091126-34.fc36
FEDORA-2022-706c76c4f0 Packages in this update: woff-0.20091126-34.fc36 Update description: Fix a possible double free in woffEncode(). Update License to SPDX improved summary and description Add hand-written...
CVE-2021-31693
VMware Tools for Windows (12.x.y prior to 12.1.5, 11.x.y and 10.x.y) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user...
USN-5749-1: libsamplerate vulnerability
Erik de Castro Lopo and Agostino Sarubbo discovered that libsamplerate did not properly perform bounds checking. If a user were tricked into processing a specially...
USN-5728-3: Linux kernel (GCP) vulnerabilities
Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure...
CyberDanube Security Research 20221124-0 | Authenticated Command Injection Hirschmann BAT-C2
Posted by Thomas Weber on Nov 29 CyberDanube Security Research 20221124-0 ------------------------------------------------------------------------------- title| Authenticated Command Injection product| Hirschmann (Belden) BAT-C2 vulnerable version|...
Exploiting an N-day vBulletin PHP Object Injection Vulnerability
Posted by Egidio Romano on Nov 29 Hello list, Just wanted to share with you my latest blog post: http://karmainsecurity.com/exploiting-an-nday-vbulletin-php-object-injection Best regards, /EgiX Read More
Win32.Ransom.Conti / Crypto Logic Flaw
Posted by malvuln on Nov 29 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/99e55ce93392068c970384ab24a0e13d.txt Contact: malvuln13 () gmail com Media:...
Ransomware Deception Tactics Part 1
Posted by malvuln on Nov 29 Did you know? some Ransomware like CONTI and others will FAIL to encrypt non PE files that have a...
Trojan.Win32.DarkNeuron.gen / Named Pipe Null DACL
Posted by malvuln on Nov 29 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/d891c9374ccb2a4cae2274170e8644d8.txt Contact: malvuln13 () gmail com Media:...
Backdoor.Win32.Autocrat.b / Weak Hardcoded Credentials
Posted by malvuln on Nov 29 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/4262a8b52b902aa2e6bf02a156d1b8d4.txt Contact: malvuln13 () gmail com Media:...