[SYSS-2024-036] DiCal-RED – Missing Authentication for Critical Function
Posted by Sebastian Hamann via Fulldisclosure on Aug 22 Advisory ID: SYSS-2024-036 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Version(s): Unknown Tested Version(s): 4009 Vulnerability...
Re: Improper Authentication (CWE-287) CVE-2024-33897
Posted by Jeffrey Walton on Aug 22 I believe the problem lies elsewhere. The root cause is an architectural or design problem. Ewon Cosy+ should...
` Piano `
Posted by Teri Olson on Aug 22 Hello, I'm giving out my late husband's Yamaha Baby Grand Piano for free to any passionate instrument lover....
USN-6980-1: ImageMagick vulnerabilities
It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially...
Cthulhu Stealer Malware Targets macOS With Deceptive Tactics
Cthulhu Stealer targets macOS, posing a major threat by disguising as legitimate software via DMG files Read More
USN-6978-1: XStream vulnerabilities
It was discovered that XStream incorrectly handled parsing of certain crafted XML documents. A remote attacker could possibly use this issue to read arbitrary files....
FAA Admits Gaps in Aircraft Cybersecurity Rules: New Regulation Proposed
The US FAA has proposed new rules for aircraft to address cyber vulnerabilities caused by the increased interconnectivity of critical systems Read More
Over 3400 High and Critical Cyber Alerts Recorded in First Half of 2024
The United States bore most of these cyber-threats, with a 46.15% rise in attacks compared to 2023 Read More
Company Fined $1m for Fake Joe Biden AI Calls
FCC charges Lingo Telecom with $1m fine over voice deepfake during the 2024 New Hampshire primary election Read More
USN-6972-2: Linux kernel (AWS) vulnerabilities
Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker...