SEC Consult SA-20220601-1 :: Authenticated Command Injection in Poly Studio
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jun 03 SEC Consult Vulnerability Lab Security Advisory < 20220601-1 > ======================================================================= title: Authenticated Command...
SEC Consult SA-20220601-0 :: Multiple Critical Vulnerabilities in Poly EagleEye Director II
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jun 03 SEC Consult Vulnerability Lab Security Advisory < 20220601-0 > ======================================================================= title: Multiple Critical...
SEC Consult SA-20220531-0 :: Backdoor account in Korenix JetPort 5601V3
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Jun 03 SEC Consult Vulnerability Lab Security Advisory < 20220531-0 > ======================================================================= title: Backdoor account...
Re: Three vulnerabilities found in MikroTik’s RouterOS
Posted by Q C on Jun 03 [update 2022/05/30] Two CVEs have been assigned to these vulnerabilities. CVE-2021-36613: Mikrotik RouterOs before stable 6.48.2 suffers from...
[CVE-2021-40150] Reolink E1 Zoom Camera <= 3.0.0.716 Unauthenticated Web Server Configuration Disclosure
Posted by Julien Ahrens (RCE Security) on Jun 03 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Reolink E1 Zoom Camera Vendor URL: https://reolink.com/product/e1-zoom/...
[CVE-2021-40149] Reolink E1 Zoom Camera <= 3.0.0.716 Unauthenticated Private Key Disclosure
Posted by Julien Ahrens (RCE Security) on Jun 03 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Reolink E1 Zoom Camera Vendor URL: https://reolink.com/product/e1-zoom/...
A Vulnerability in Atlassian Confluence Server and Data Center Could Allow for Remote Code Execution
A vulnerability has been discovered in Atlassian Confluence Server and Data Center, which could allow for remote code execution. Confluence is a wiki tool used...
firefox-101.0-1.fc35
FEDORA-2022-bf1df71b2a Packages in this update: firefox-101.0-1.fc35 Update description: New upstream version (101.0) Fixed missing popups in some scenarios on Wayland (https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) Read More
Active Exploitation of WSO2 Vulnerability (CVE-2022-29464) Delivers Malware
FortiGuard Labs is aware that a WSO2 vulnerability (CVE-2022-29464) that was patched in February 2022 and was disclosed in April is still being actively exploited...
Ransomware Roundup – 2022/06/02
FortiGuard Labs is aware of a number of new ransomware strains for the week of May 30th, 2022. It is imperative to raise awareness about...