CVE-2019-19450
paraparser in ReportLab before 3.5.31 allows remote code execution because start_unichar in paraparser.py evaluates untrusted user input in a unichar element in a crafted XML...
USN-6390-1: Bind vulnerabilities
It was discovered that Bind incorrectly handled certain control channel messages. A remote attacker with access to the control channel could possibly use this issue...
#NITAM: Average Annual Cost of Insider Incidents Reaches $16.2m Per Organization
The Ponemon and DTEX report found that the average annual cost of insider risks has risen by 40% over four years Read More
thunderbird-stable-3820230920095641.1
FEDORA-FLATPAK-2023-ee7c6eb99f Packages in this update: thunderbird-stable-3820230920095641.1 Update description: Update to 102.15.1 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-28/ ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-32/ ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-37/ ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/ ; https://www.thunderbird.net/en-US/thunderbird/102.15.0/releasenotes/ Read More
CVE-2022-45448
M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to an arbitrary HTML Document crafting vulnerability. The resource /m4pdf/pdf.php uses...
#mWISE: US to Implement Game-Changing Cyber Mandates on Medical Devices
A new legal requirement for medical devices in the US will introduce the first-ever SBOM mandate for the consumer market Read More
Get the AT&T Cybersecurity Insights Report: Focus on Manufacturing
We’re pleased to announce the availability of the 2023 AT&T Cybersecurity Insights Report: Focus on Manufacturing. The report examines the edge ecosystem, surveying manufacturing IT...
USN-6389-1: Indent vulnerability
It was discovered that Indent incorrectly handled parsing certain source files. If a user or automated system were tricked into processing a specially crafted source...
On the Cybersecurity Jobs Shortage
In April, Cybersecurity Ventures reported on extreme cybersecurity job shortage: Global cybersecurity job vacancies grew by 350 percent, from one million openings in 2013 to...
CVE-2022-45447
M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The “f� parameter is not properly...