Aggregator

近日，五眼联盟发布了报告，公布了2023年最常被利用的漏洞清单。其中，零日漏洞已经成为黑客最常利用的漏洞类型。

A vulnerability was found in Palo Alto Expedition up to 1.2.95 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to sql injection. This vulnerability is handled as CVE-2024-9465. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Palo Alto Expedition up to 1.2.95. It has been rated as very critical. Affected by this issue is some unknown functionality of the component Device Configuration Handler. The manipulation leads to os command injection. This vulnerability is handled as CVE-2024-9463. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Неоднозначная кандидатура вызывает сомнения у аналитиков.

OpenMP Architecture Review Board 宣布释出 OpenMP 6.0。OpenMP（Open Multi-Processing）是一套支持跨平台共享内存方式的多线程并发的编程 API，支持 C、C++ 和 Fortran 语言，能在大多数的处理器体系和操作系统中运行。OpenMP 6.0 致力于在新应用中支持并行编程更简单，适应新用例更轻松，开发者控制更精细。通过支持自由线程（free-agent threads）任务执行，允许记录任务图以实现高效重放等改进，OpenMP 简化了任务编程。其它改进包括支持数组语法应用，改进控制内存分配和可访问性，简化编写异步数据传输，支持 C23 / Fortran 2023 / C++23 标准，等等。

和墨菲安全一起参加【切面会客厅：平行切面技术实践应用专场】啦！

和墨菲安全一起参加【切面会客厅：平行切面技术实践应用专场】啦！

和墨菲安全一起参加【切面会客厅：平行切面技术实践应用专场】啦！

议程公布！广州不见不散！

自火绒安全软件6.0产品正式上线以来，我们收到了广大用户对产品的宝贵建议与反馈。为了能够更全面地为用户提供安全防护，并提升用户的使用体验，火绒安全积极响应用户需求，将于近日推出6.0.4.0版本。

A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans / Midnight Blue' was reported to the affected vendor on: 2024-11-15, 88 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans / Midnight Blue' was reported to the affected vendor on: 2024-11-15, 88 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 9.6 AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H severity vulnerability discovered by 'Synacktiv' was reported to the affected vendor on: 2024-11-15, 88 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 4.3 AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Chris Anastasio @mufinnnnnnn & Fabius Watson' was reported to the affected vendor on: 2024-11-15, 90 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 6.8 AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Synacktiv' was reported to the affected vendor on: 2024-11-15, 90 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by '@ExLuck99' was reported to the affected vendor on: 2024-11-15, 90 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.