rocco, Author at Cyber Security News

CWE-226 – Sensitive Information in Resource Not Removed Before Reuse

Description The product releases a resource such as memory or a file so that it can be made available for reuse, but it does not...

rocco

May 26, 2022May 26, 2022

CWE

CWE-228 – Improper Handling of Syntactically Invalid Structure

Description The product does not handle or incorrectly handles input that is not syntactically well-formed with respect to the associated specification. Modes of Introduction: -...

rocco

May 26, 2022May 26, 2022

CWE

CWE-229 – Improper Handling of Values

Description The software does not properly handle when the expected number of values for parameters, fields, or arguments is not provided in input, or if...

rocco

May 26, 2022May 26, 2022

CWE

CWE-23 – Relative Path Traversal

Description The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such...

rocco

May 26, 2022May 26, 2022

CWE

CWE-230 – Improper Handling of Missing Values

Description The software does not handle or incorrectly handles when a parameter, field, or argument name is specified, but the associated value is missing, i.e....

rocco

May 26, 2022May 26, 2022

CWE

CWE-231 – Improper Handling of Extra Values

Description The software does not handle or incorrectly handles when more values are provided than expected. Modes of Introduction: - Implementation Related Weaknesses...

rocco

May 26, 2022May 26, 2022

CWE

CWE-232 – Improper Handling of Undefined Values

Description The software does not handle or incorrectly handles when a value is not defined or supported for the associated parameter, field, or argument name....

rocco

May 26, 2022May 26, 2022

CWE

CWE-233 – Improper Handling of Parameters

Description The software does not properly handle when the expected number of parameters, fields, or arguments is not provided in input, or if those parameters...

rocco

May 26, 2022May 26, 2022

CWE

CWE-234 – Failure to Handle Missing Parameter

Description If too few arguments are sent to a function, the function will still pop the expected number of arguments from the stack. Potentially, a...

rocco

May 26, 2022May 26, 2022

CWE

CWE-235 – Improper Handling of Extra Parameters

Description The software does not handle or incorrectly handles when the number of parameters, fields, or arguments with the same name exceeds the expected amount....

rocco

May 26, 2022May 26, 2022

Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War

AI Industry is Trying to Subvert the Definition of “Open Source AI”

Major Oilfield Supplier Hit by Ransomware Attack

North Korean Actor Deploys Novel Malware Campaign Against Crypto Firms

Androxgh0st Botnet Adopts Mozi Payloads, Expands IoT Reach

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

Prompt Injection Defenses Against LLM Cyberattacks

CIS Benchmarks November 2024 Update

UK Regulator Urges Stronger Data Protection in AI Recruitment Tools

rocco

CWE-226 – Sensitive Information in Resource Not Removed Before Reuse

CWE-228 – Improper Handling of Syntactically Invalid Structure

CWE-229 – Improper Handling of Values

CWE-23 – Relative Path Traversal

CWE-230 – Improper Handling of Missing Values

CWE-231 – Improper Handling of Extra Values

CWE-232 – Improper Handling of Undefined Values

CWE-233 – Improper Handling of Parameters

CWE-234 – Failure to Handle Missing Parameter

CWE-235 – Improper Handling of Extra Parameters