Read Time:3 Second
Posted by malvuln on May 14
Updated, fixed typo
SHA256 : 810229C7E62D5EDDD3DA9FFA19D04A31D71F9C36D05B6A614FEF496E88656FF5
Category Archives: Advisories
RansomLord v3 / Anti-Ransomware Exploit Tool Released
Read Time:22 Second
Posted by malvuln on May 14
Proof-of-concept tool that automates the creation of PE files, used to
exploit Ransomware pre-encryption. Updated v3:
https://github.com/malvuln/RansomLord/releases/tag/v3
Lang: C SHA256:
83f56d14671b912a9a68da2cd37607cac3e5b31560a6e30380e3c6bd093560f5
Video PoC (old v2):
https://www.youtube.com/watch?v=_Ho0bpeJWqI
RansomLord generated PE files are saved to disk in the x32 or x64
directories where the program is run from. Goal is to exploit…
APPLE-SA-05-13-2024-8 tvOS 17.5
Read Time:25 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-8 tvOS 17.5
tvOS 17.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214102.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
AppleAVD
Available for: Apple TV HD and Apple TV 4K (all models)
Impact: An app may be able to execute arbitrary code with kernel…
APPLE-SA-05-13-2024-7 watchOS 10.5
Read Time:25 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-7 watchOS 10.5
watchOS 10.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214104.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
AppleAVD
Available for: Apple Watch Series 4 and later
Impact: An app may be able to execute arbitrary code with kernel
privileges…
Research about consistency of CVSSv4
Read Time:22 Second
Posted by Julia Wunder on May 14
Hello there,
The University of Erlangen-Nuremberg (Germany) is conducting a research
study to investigate the reliability of CVSSv4 (Common Vulnerability
Scoring System). We conducted a survey on CVSSv3.1 in winter 2020/21 and
found out that the ratings are not always consistent [1]. Now we want to
investigate the latest version CVSSv4. If you are currently assessing
vulnerabilities using CVSS, we would greatly appreciate your…
APPLE-SA-05-13-2024-6 macOS Monterey 12.7.5
Read Time:25 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-6 macOS Monterey 12.7.5
macOS Monterey 12.7.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214105.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Find My
Available for: macOS Monterey
Impact: A malicious application may be able to access Find My data…
APPLE-SA-05-13-2024-5 macOS Ventura 13.6.7
Read Time:25 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-5 macOS Ventura 13.6.7
macOS Ventura 13.6.7 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214107.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Foundation
Available for: macOS Ventura
Impact: An app may be able to access user-sensitive data
Description: A…
APPLE-SA-05-13-2024-4 macOS Sonoma 14.5
Read Time:24 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-4 macOS Sonoma 14.5
macOS Sonoma 14.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214106.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
AppleAVD
Available for: macOS Sonoma
Impact: An app may be able to execute arbitrary code with kernel
privileges…
APPLE-SA-05-13-2024-3 iOS 16.7.8 and iPadOS 16.7.8
Read Time:26 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-3 iOS 16.7.8 and iPadOS 16.7.8
iOS 16.7.8 and iPadOS 16.7.8 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214100.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
Foundation
Available for: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation,
iPad Pro…
APPLE-SA-05-13-2024-2 iOS 17.5 and iPadOS 17.5
Read Time:26 Second
Posted by Apple Product Security via Fulldisclosure on May 14
APPLE-SA-05-13-2024-2 iOS 17.5 and iPadOS 17.5
iOS 17.5 and iPadOS 17.5 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT214101.
Apple maintains a Security Releases page at
https://support.apple.com/HT201222 which lists recent
software updates with security advisories.
AppleAVD
Available for: iPhone XS and later, iPad Pro 12.9-inch 2nd generation
and later, iPad Pro…