USN-6334-1: atftp vulnerabilities

Read Time:30 Second

Peter Wang discovered that atftp did not properly manage certain inputs. A
remote attacker could send a specially crafted tftp request to the server
to cause a crash. (CVE-2020-6097)

Andreas B. Mundt discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server to cause a crash. (CVE-2021-41054)

Johannes Krupp discovered that atftp did not properly manage certain
inputs. A remote attacker could send a specially crafted tftp request to
the server and make the server to disclose /etc/group data.
(CVE-2021-46671)

Smashing Security podcast #414: Zoom.. just one click and your data goes boom!

DOGE Worker’s Code Supports NLRB Whistleblower

Regulating AI Behavior with a Hypervisor

Verizon’s DBIR Reveals 34% Jump in Vulnerability Exploitation

FBI Reveals “Staggering” $16.6bn Lost to Cybercrime in 2024

Vulnerability Exploitation and Credential Theft Now Top Initial Access Vectors

US Data Breach Victim Count Surges 26% Annually

M&S Grapples with Cyber Incident Affecting In-Store Services

Dutch Warn of “Whole of Society” Russian Cyber-Threat

USN-6334-1: atftp vulnerabilities

HNS-2025-10 – HN Security Advisory – Local privilege escalation in Zyxel uOS

APPLE-SA-04-16-2025-4 visionOS 2.4.1

APPLE-SA-04-16-2025-3 tvOS 18.4.1

APPLE-SA-04-16-2025-2 macOS Sequoia 15.4.1

APPLE-SA-04-16-2025-1 iOS 18.4.1 and iPadOS 18.4.1

Business Logic Flaw: Price Manipulation – AlegroCartv1.2.9