Advisories Archives - Page 1504 of 1611

composer-2.3.5-1.fc36

FEDORA-2022-60ec715192 Packages in this update: composer-2.3.5-1.fc36 Update description: Version 2.3.5 - 2022-04-13 Security: Fixed command injection vulnerability in HgDriver/GitDriver (GHSA-x7cr-6qr6-2hh6 / CVE-2022-24828) Added warning when...

April 14, 2022

Advisories

composer-2.3.5-1.el9

FEDORA-EPEL-2022-cfff8c1f5c Packages in this update: composer-2.3.5-1.el9 Update description: Version 2.3.5 - 2022-04-13 Security: Fixed command injection vulnerability in HgDriver/GitDriver (GHSA-x7cr-6qr6-2hh6 / CVE-2022-24828) Added warning when...

April 14, 2022

Advisories

composer-2.2.12-1.fc34

FEDORA-2022-617a6df23e Packages in this update: composer-2.2.12-1.fc34 Update description: Version 2.2.12 - 2022-04-13 Security: Fixed command injection vulnerability in HgDriver/GitDriver (GHSA-x7cr-6qr6-2hh6 / CVE-2022-24828) Fixed curl downloader...

April 14, 2022

Advisories

composer-1.10.26-1.el7

FEDORA-EPEL-2022-a970a526cb Packages in this update: composer-1.10.26-1.el7 Update description: Version 1.10.26 - 2022-04-13 Security: Fixed command injection vulnerability in HgDriver/GitDriver (GHSA-x7cr-6qr6-2hh6 / CVE-2022-24828) Version 1.10.25 -...

April 14, 2022

Advisories

Microsoft Patch Tuesday 0-day Escalation of Privilege Vulnerability (CVE-2022-24521)

Microsoft has released over 117 security fixes for this month's April 2022 release. Besides the usual security fixes, there were two zero days of note...

April 14, 2022

Advisories

Industroyer2 Discovered Attacking Critical Ukrainian Verticals

FortiGuard Labs is aware of new reports of Industroyer2, the successor to the Industroyer malware. First discovered in 2016, Industroyer was attributed to energy grid...

April 13, 2022

Advisories

CVE-2019-6834

A CWE-502: Deserialization of Untrusted Data vulnerability exists which could allow an attacker to execute arbitrary code on the targeted system with SYSTEM privileges when...

April 13, 2022

Advisories

CVE-2021-22794

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data...

April 13, 2022

Advisories

CVE-2021-22795

A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when performed...

April 13, 2022

Advisories

CVE-2021-22797

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an...

April 13, 2022

CISA Warns of Critical Software Vulnerabilities in Industrial Devices

US and Israel Warn of Iranian Threat Actor’s New Tradecraft

Fired Disney worker accused of hacking into restaurant menus, replacing them with Windings and false peanut allergy information

New Xiu Gou Phishing Kit Targets US, Other Countries with Mascot

Misconfigured Git Configurations Targeted in Emeraldwhale Attack

Roger Grimes on Prioritizing Cybersecurity Advice

Fraudsters exploit US General Election fever, FBI warns

Tracking World Leaders Using Strava

Canadian Government Data Stolen By Chinese Hackers

Category: Advisories

composer-2.3.5-1.fc36

composer-2.3.5-1.el9

composer-2.2.12-1.fc34

composer-1.10.26-1.el7

Microsoft Patch Tuesday 0-day Escalation of Privilege Vulnerability (CVE-2022-24521)

Industroyer2 Discovered Attacking Critical Ukrainian Verticals

CVE-2019-6834

CVE-2021-22794

CVE-2021-22795

CVE-2021-22797