Aggregator

是谁催更了？

Riffo是什么 Riffo 是一款专为 Mac 设计的免费 AI 文件管理工具，能够在几秒钟内根据文件内容自动重命名杂乱文件夹中的文件。操作简单，只需拖放文件，点击“下一步&rdq...

Riffo是什么Riffo 是一款专为 Mac 设计的免费 AI 文件管理工具，能够在几秒钟内根据文件内容自动重命名杂乱文件夹中的文件。操作简单，只需拖

A vulnerability, which was classified as critical, has been found in MediaTek MT6765, MT6768, MT6779, MT6785, MT8321, MT8385, MT8666, MT8667, MT8755, MT8765, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8792, MT8795T, MT8796, MT8797 and MT8798. This issue affects some unknown processing of the component Venc. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2024-20083. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in CAYIN CMS-SE 11.0. This vulnerability affects unknown code. The manipulation leads to os command injection. This vulnerability was named CVE-2024-7728. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in open-telemetry opentelemetry-collector-contrib up to 0.106.x. This affects an unknown part. The manipulation leads to observable timing discrepancy. This vulnerability is uniquely identified as CVE-2024-42368. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

AIResumeBuilder是什么 AIResumeBuilder 是一款免费在线AI简历生成器，使用AI简历生成器轻松创建高质量简历，提供免费简历模板、专业简历示例以及AI指导，帮助用户轻松...

AIResumeBuilder是什么AIResumeBuilder 是一款免费在线AI简历生成器，使用AI简历生成器轻松创建高质量简历，提供免费简历模板

A vulnerability was found in MediaTek MT2735, MT2737, MT6833, MT6835, MT6835T, MT6853, MT6855, MT6873, MT6875, MT6875T, MT6877, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895T, MT6896, MT6897, MT6980, MT6980D, MT6983, MT6985, MT6989 and MT6990 NR15/NR16/NR17. It has been rated as critical. Affected by this issue is some unknown functionality of the component Modem. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2024-20082. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

Ivanti has rolled out security updates for a critical flaw in Virtual Traffic Manager (vTM) that could be exploited to achieve an authentication bypass and create rogue administrative users. The vulnerability, tracked as CVE-2024-7593, has a CVSS score of 9.8 out of a maximum of 10.0. "Incorrect implementation of an authentication algorithm in Ivanti vTM other than versions 22.2R1 or 22.7R2

A vulnerability was found in SolarWinds Web Help Desk up to 12.8.3. It has been declared as very critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to deserialization. This vulnerability is known as CVE-2024-28986. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Аппарат, способный исследовать ледяной мир Тритона, может стать ключом к разгадке тайн крупнейшего спутника Нептуна.

The China-backed threat actor known as Earth Baku has diversified its targeting footprint beyond the Indo-Pacific region to include Europe, the Middle East, and Africa starting in late 2022. Newly targeted countries as part of the activity include Italy, Germany, the U.A.E., and Qatar, with suspected attacks also detected in Georgia and Romania. Governments, media and communications, telecoms,

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Hossein Lotfi (@hosselot) of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-08-14, 58 days ago. The vendor is given until 2024-12-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sina Kheirkhah (@SinSinology) of Summoning Team (@SummoningTeam)' was reported to the affected vendor on: 2024-08-14, 58 days ago. The vendor is given until 2024-12-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 4.7 AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2024-08-14, 58 days ago. The vendor is given until 2024-12-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sina Kheirkhah (@SinSinology) of Summoning Team (@SummoningTeam)' was reported to the affected vendor on: 2024-08-14, 58 days ago. The vendor is given until 2024-12-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'dw0r!' was reported to the affected vendor on: 2024-08-14, 58 days ago. The vendor is given until 2024-12-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.