Read Time:7 Second
Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity.
Monthly Archives: November 2022
python3.9-3.9.15-2.fc37
Read Time:7 Second
FEDORA-2022-028c09eaa7
Packages in this update:
python3.9-3.9.15-2.fc37
Update description:
Security fix for CVE-2022-42919
Researchers show techniques for malware persistence on F5 and Citrix load balancers
Read Time:48 Second
Over the past several years, hackers have targeted public-facing network devices such as routers, VPN concentrators, and load balancers to gain a foothold into corporate networks. While finding remote code execution vulnerabilities in such devices is not uncommon, incidents where attackers were able to deploy malware on them that can survive restarts or firmware upgrades have been rare and generally attributed with sophisticated APT groups.
Because they use flash memory that degrades over time if subjected to many write operations, embedded network devices typically store their firmware in read-only filesystems and load their contents into RAM at each restart. This means that all changes and files generated by the various running services during the device’s normal operation are temporary because they only occur in RAM and are never saved to the file system, which is restored to its initial state when the device is restarted reboot.
python3.10-3.10.8-2.fc36
Read Time:7 Second
FEDORA-2022-462f39dd2f
Packages in this update:
python3.10-3.10.8-2.fc36
Update description:
Security fix for CVE-2022-42919
High-Risk Vulnerability Found in ABB’s Flow Computers
Read Time:5 Second
Attackers could exploit it by sending a specially crafted message to an affected system node
GitHub releases new SDLC security features including private vulnerability reporting
Read Time:28 Second
GitHub has announced new security features across its platform to help protect the software development lifecycle (SDLC). These include private vulnerability reporting, CodeQL vulnerability scanning support for the Ruby programming language, and two new security overview options. The world’s leading development platform said these updates make securing the SDLC end-to-end easier and more seamless for developers. The releases come as SDLC cybersecurity remains high on the agenda with research revealing an increase of almost 800% in software supply chain attacks.
Multiple Vulnerabilities in VMware Workspace ONE Assist Could Allow for Privilege Escalation
Read Time:23 Second
Multiple vulnerabilities have been discovered in VMware Workspace ONE Assist, the most severe of which could allow for privilege escalation. VMware Workspace ONE Assist is a remote access tool used to remotely access and troubleshoot VMware devices. Successful exploitation of the most severe of these vulnerabilities could allow for privilege escalation and possibly obtaining administrative access. Depending on the permissions associated with the user account compromised, an attacker could then install programs; view, change, or delete data.
CVE-2021-34579
Read Time:24 Second
In Phoenix Contact: FL MGUARD DM version 1.12.0 and 1.13.0 access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.Attackers with network access to the Apache web server can download and therefore read mGuard configuration profiles (“ATV profiles�). Such configuration profiles may contain sensitive information, e.g. private keys associated with IPsec VPN connections.
CVE-2021-34577
Read Time:9 Second
In the Kaden PICOFLUX AiR water meter an adversary can read the values through wireless M-Bus mode 5 with a hardcoded shared key while being adjacent to the device.
Malicious Package on PyPI Hides Behind Image Files, Spreads Via GitHub
Read Time:4 Second
The findings indicate that PyPI malicious packages and their obfuscation techniques are evolving