USN-5997-1: IPMItool vulnerability
It was discovered that IPMItool was not properly checking the data received from a remote LAN party. A remote attacker could possibly use this issue...
Snyk bolsters developer security with fresh devsecop, cloud capabilities
Cybersecurity application provider Snyk has added fresh capabilities to its flagship developer security platform to improve programming productivity and help secure software supply chains. The...
FedEx Ship Manager (FSM) v3704 Insecure Use of .NET Remoting
Posted by Harrison Neal on Apr 04 Vulnerable Software Download URL: https://www.fedex.com/en-us/shipping/ship-manager/software.html#tab-4 FSM 3704 (and some earlier versions) use .NET Remoting in a way that...
New Rorschach ransomware hits with unique features and very fast encryption
Researchers warn of a new strain of ransomware dubbed Rorschach that doesn't appear to be related to previously known threats and uses several unique features...
UK data regulator issues warning over generative AI data protection concerns
The UK’s data regulator has issued a warning to tech companies about protecting personal information when developing and deploying large language, generative AI models. Less...
New “Rorschach” Ransomware Spread Via Commercial Product
The ransomware strain uses a signed component of the Palo Alto Cortex XDR Dump Service Tool Read More
Western Digital Hit By Network Security Breach
The incident involved an unauthorized third party gaining access to several systems Read More
CVE-2020-19850
An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests. Read...
CVE-2020-19699
Cross Site Scripting vulnerability found in KOHGYLW Kiftd v.1.0.18 allows a remote attacker to execute arbitrary code via the <ifram> tag in the upload file...
CVE-2020-19698
Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter....