Tech talk during Covid-19 Pandemic
As the COVID-19 pandemic is spreading globally has created new challenges for businesses worldwide. Many of us have had to
Prediction: Cyber Space in 2021
Cyber landscape predictions FireEye Mandiant has delivered its cyber landscape predictions for the coming year, including growing and affiliate-supported espionage,
Prediction: Cyber Space in 2021
[vc_row][vc_column][vc_column_text css=”.vc_custom_1605803110582{border-radius: 1px !important;}”] Cyber landscape predictions FireEye Mandiant has delivered its cyber landscape predictions for the coming year, including
NETGEAR R7800 devices before 1.0.2.52 are affected by a stack-based buffer overflow by an authenticated user.
[vc_row][vc_column][vc_column_text] Overview : NETGEAR R7800 devices before 1.0.2.52 are affected by a stack-based buffer overflow by an authenticated user. Security
WebKitGTK and WPE WebKit Security Advisory WSA-2020-0004
[vc_row][vc_column][vc_column_text] Overview : A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content
Security Advisory for Post-Authentication Command Injection on Some Routers and Gateways, PSV-2018-0352
[vc_row][vc_column][vc_column_text] Overview : Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.52,
Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access to the host by provisioning a privileged container. Fixed in MicroK8s 1.15.3.
[vc_row][vc_column][vc_column_text] Overview : Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access
PRTG-Network-Monitor-Information-Disclosure
[vc_row][vc_column][vc_column_text] Overview : PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the
Apache HTTP Server 2.4 vulnerabilities
[vc_row][vc_column][vc_column_text] Overview : In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential
Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an attacker is able to create API keys.
[vc_row][vc_column][vc_column_text] Overview : Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an
Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability.
[vc_row][vc_column][vc_column_text] Overview : Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability. The impact is high. Malicious users/attackers
Community plugin 2.9.e-beta for Piwigo allows users to set image information on images in albums for which they do not have permission,
[vc_row][vc_column][vc_column_text] Overview : The Community plugin 2.9.e-beta for Piwigo allows users to set image information on images in albums for
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Quest Foglight Evolve 9.0.0
[vc_row][vc_column][vc_column_text] Overview : This vulnerability allows remote attackers to execute arbitrary code on affected installations of Quest Foglight Evolve 9.0.0.
Common Vulnerabilities and Exposures Container Security cyber security news Web Application Firewall
Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account
[vc_row][vc_column][vc_column_text] Overview : cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from
ERPNext 11.1.47 allows blog?blog_category= Frame Injection.
[vc_row][vc_column][vc_column_text] Overview : ERPNext 11.1.47 allows blog?blog_category= Frame Injection. Affected Product(s) : Affected Software: ERPNext Affected Versions: 11.1.47 Vulnerability Details : CVE