APT10 (Cicada) Campaign Expands on Further Global Interests
FortiGuard Labs is aware of a new campaign from the APT10/Cicada threat actors. Reported by researchers at Symantec, this latest campaign highlights the various tools...
DSA-5113 firefox-esr – security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or...
stargz-snapshotter-0.10.2-1.fc34
FEDORA-2022-e244ad73d6 Packages in this update: stargz-snapshotter-0.10.2-1.fc34 Update description: Security fix for CVE-2022-21698 Read More
Borat RAT: New RAT with Ransomware Capability
FortiGuard Labs is aware of a report that a new Remote Access Trojan (RAT) called "Borat" is sold in underground forums. The RAT provides not...
stargz-snapshotter-0.10.2-1.fc35
FEDORA-2022-a7d438b30b Packages in this update: stargz-snapshotter-0.10.2-1.fc35 Update description: Security fix for CVE-2022-21698 Read More
CVE-2020-19229
Jeesite 1.2.7 uses the apache shiro version 1.2.3 affected by CVE-2016-4437. Because of this version of the java deserialization vulnerability, an attacker could exploit the...
CVE-2020-23349
An intent redirection issue was doscovered in Sina Weibo Android SDK 4.2.7 (com.sina.weibo.sdk.share.WbShareTransActivity), any unexported Activities could be started by the com.sina.weibo.sdk.share.WbShareTransActivity. Read More
CVE-2020-28847
Cross Site Scripting (XSS) vulnerability in xCss Valine v1.4.14 via the nick parameter to /classes/Comment. Read More
USN-5365-1: H2 vulnerabilities
It was discovered that H2 was vulnerable to deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary code. (CVE-2021-42392) It...