Aggregator

A vulnerability, which was classified as critical, has been found in Crestron DM-TXRX-100-STR up to 1.3039.00040. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2016-5671. The attack may be launched remotely. There is no exploit available.

工信领域数据安全事件应急预案出台，法国第二大电信机构遭入侵……

又是一年Hackergame，今年题目难度整体偏基础好入门，给这周增添了点娱乐气息，和往年一样比赛中也学到了许多。

It’s hard not to see IoT secu

Угроза глобальной нестабильности заставляет инвестировать в космос.

A vulnerability classified as critical was found in Ceph. This vulnerability affects unknown code of the component RadosGW. The manipulation of the argument encryption algorithm with the input none leads to improper authentication. This vulnerability was named CVE-2024-48916. The attack needs to be approached within the local network. There is no exploit available.

背景介绍随着纸质文件越来越不受欢迎，现在相当一部分重要数据和文件都存储在互联网上。每天都有许多关于公司敏感文件泄露的消息被爆出，这些文件原本是供员工、投资者内部使用，或用于管理内部业务，如果不采取足够

error code: 1106

error code: 1106

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn. GreyNoise discovered the two flaws while investigating the use of an exploit detected by its LLM-powered threat-hunting tool Sift. The company discovered […]

Сетевая империя хакеров рушится под давлением правоохранителей.

A vulnerability classified as problematic has been found in qBittorrent up to 5.0.0. This affects an unknown part. The manipulation leads to improper certificate validation. This vulnerability is uniquely identified as CVE-2024-51774. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Более двух тысяч поддельных сайтов атакуют пользователей из развитых стран.

Пекин развивает искусственный интеллект для боевых задач.

Executive SummaryThis article reviews an incident where a threat actor unsuccessfu

A vulnerability has been found in Relyum RELY-PCIe up to 23.1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-44573. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Friendly SVN up to 1.0.11. This affects an unknown part of the file /admin/config/save. The manipulation of the argument siteTitle/siteIco/siteLogo leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-37879. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in goTenna Pro Series up to 1.6.1. This affects an unknown part of the component QR Broadcast Message Handler. The manipulation leads to weak password requirements. This vulnerability is uniquely identified as CVE-2024-47121. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Meta Tacquito. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to permissive regular expression. This vulnerability is known as CVE-2024-49400. The attack can only be initiated within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.