Read Time:14 Second

Posted by Gionathan Armando Reale via Fulldisclosure on Sep 02

Insufficiently Protected Credentials in Texas Instruments Fusion Digital Power Designer v.7.10.1

Credit: Gionathan Armando Reale

//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

# Product: Fusion Digital Power Designer – Version 7.10.1
# Vendor: Texas Instruments
# CVE ID: CVE-2024-41629
#…

Advisories

SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary Hijacking in Vivavis HIGH-LEIT (CVE-2024-38456)

September 3, 2024

Read Time:21 Second

Posted by David Brown via Fulldisclosure on Sep 02

Title
=====

SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary
Hijacking in Vivavis HIGH-LEIT

Status
======

PUBLISHED

Version
=======

1.0

CVE reference
=============

CVE-2024-38456

Link
====

https://www.schutzwerk.com/advisories/schutzwerk-sa-2024-001/

Text-only version:
https://www.schutzwerk.com/advisories/SCHUTZWERK-SA-2024-001.txt

Affected products/vendor
========================

HIGH-LEIT by VIVAVIS AG[0]. Version 4…

Advisories

DSA-5764-1 openssl – security update

September 3, 2024

Read Time:18 Second

David Benjamin reported a flaw in the X.509 name checks in OpenSSL, a
Secure Sockets Layer toolkit, which may cause an application performing
certificate name checks to crash, resulting in denial of service.

Additional details can be found in the upstream advisory:
https://openssl-library.org/news/secadv/20240903.txt

https://security-tracker.debian.org/tracker/DSA-5764-1

Cyber Security News

Daily Archives: September 3, 2024

Insufficiently Protected Credentials in Texas Instruments Fusion Digital Power Designer v.7.10.1

SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary Hijacking in Vivavis HIGH-LEIT (CVE-2024-38456)

DSA-5764-1 openssl – security update

News, Advisories and much more