ZDI-24-020: Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to execute arbitrary code on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged...
Staying Safe in the Age of AI
We’ve seen how AI can create — and how it can transform our lives. What gets talked about less is how AI protects us too. ...
cpio privilege escalation vulnerability via setuid files in cpio archive
Posted by Georgi Guninski on Jan 08 cpio privilege escalation vulnerability via setuid files in cpio archive Happy New Year, let in 2024 happiness be...
OXAS-ADV-2023-0006: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Jan 08 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
OXAS-ADV-2023-0005: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on Jan 08 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
SSH-Snake: Automated SSH-Based Network Traversal
Posted by Joshua Rogers on Jan 08 SSH-Snake is a powerful tool designed to perform automatic network traversal using SSH private keys discovered on systems,...
Sexual assault in the metaverse investigated by British police
British police say that they are investigating reports that a girl under the age of 16 was sexually assaulted... in an online virtual reality game....
6 Cybersecurity Predictions for 2024 – Staying Ahead of the Latest Hacks and Attacks
AI and major elections, deepfakes and the Olympics — they all feature prominently in our cybersecurity predictions for 2024. That’s quite the mix. And that...
Apache OFBiz Authentication Bypass (CVE-2023-51467, CVE-2023-49070)
What is the vulnerability? There is an authentication bypass vulnerability in Apache OFBiz tracked under CVE-2023-51467 and CVE-2023-49070. Successful exploitation would let an attacker circumvent...
USN-6569-1: libclamunrar vulnerabilities
it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could possibly use this issue to overwrite arbitrary files and...