ZDI-22-417: (Pwn2Own) Cisco RV340 update-clients Command Injection Remote Code Execution Vulnerability

Read Time:10 Second

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.

CVE-2022-35908

Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent. Read More

September 29, 2023

thunderbird-115.3.1-1.fc39

FEDORA-2023-1afa208698 Packages in this update: thunderbird-115.3.1-1.fc39 Update description: Update to 115.3.1 ; https://www.thunderbird.net/en-US/thunderbird/115.3.1/releasenotes/ ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/ Update to 115.3.0 ; https://www.thunderbird.net/en-US/thunderbird/115.3.0/releasenotes/...

September 29, 2023

Cyber Security News

Friday Squid Blogging: Protecting Cephalopods in Medical Research

Russian Company Offers $20M For Non-NATO Mobile Exploits

Microsoft’s Bing AI Faces Malware Threat From Deceptive Ads

Phishing, Smishing Surge Targets US Postal Service

Three men found guilty of laundering $2.5 million in Target gift card tech support scam

ZeroFont trick makes users think that message has been scanned for threats

Building edge computing for manufacturing – the video

Privacy Regulator Orders End to Spreadsheet FOI Responses

Microsoft Breach Exposed 60,000 State Department Emails

ZDI-22-417: (Pwn2Own) Cisco RV340 update-clients Command Injection Remote Code Execution Vulnerability

CVE-2022-35908

thunderbird-115.3.1-1.fc39

libptytty-2.0-4.el7 rxvt-unicode-9.31-1.el7

libvpx-1.13.0-5.fc39

libvpx-1.12.0-3.fc37

libvpx-1.13.0-5.fc38