[CVE-2022-33942] Intel Data Center Manager Console <= 4.1.1.45749 ”UserMgmtHandler" Authentication Logic Error Leading to Authentication Bypass
Posted by Julien Ahrens (RCE Security) on Nov 29 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Intel Data Center Manager Vendor URL: https://www.intel.com/content/www/us/en/developer/tools/data-center-manager-console/overview.html...
crashing potplayer again
Posted by houjingyi on Nov 29 I disclosured a crash in potplayer last year : https://seclists.org/fulldisclosure/2021/Mar/76 And I found a new one this year, this...
Oracle Fusion Middleware Vulnerability Actively Exploited in the Wild: CISA
The bug allows unauthenticated attackers with network access to compromise Oracle Access Manager Read More
USN-5745-2: shadow regression
USN-5745-1 fixed vulnerabilities in shadow. Unfortunately that update introduced a regression that caused useradd to behave incorrectly in Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, Ubuntu...
CVE-2022-21126
The package com.github.samtools:htsjdk before 3.0.1 are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the createTempDir() function in util/IOUtil.java not...
PII May Have Been Stolen in Virginia County Ransomware Attack
A W-2 form was reportedly published on a dark web forum with stolen, sensitive data Read More
woff-0.20091126-35.fc37
FEDORA-2022-c30d362ce5 Packages in this update: woff-0.20091126-35.fc37 Update description: Fix a possible double free in woffEncode(). Update License to SPDX improved summary and description Add hand-written...
US Census Bureau Head Fends Off Critics of ‘Differential Privacy’ Tool
Santos defended differential privacy against prominent researchers Read More
Ransomware attackers allegedly demand ransom from AIIMS: police deny report
A hacker has allegedly demanded Rs 200 crore in cryptocurrency from the All India Institute of Medical Science (AIIMS) after it was hit by a...
BrandPost: SASE: The Only Way to Improve Network Security Without Added Complexity
By: Mike Spanbauer, Field CTO, Security at Juniper Networks The future of network security has a new shiny architecture to meet organizational needs with Secure Access...