Aggregator

CVE-2022-49888 | Linux Kernel up to 5.15.77/6.0.7 arm64 kprobe_events cortex_a76_erratum_1463225_debug_handler stack-based overflow (Nessus ID 249908)

Vuldb Updates
6 months ago
A vulnerability was found in Linux Kernel up to 5.15.77/6.0.7. It has been classified as critical. The affected element is the function cortex_a76_erratum_1463225_debug_handler of the file /sys/kernel/debug/tracing/kprobe_events of the component arm64. The manipulation leads to stack-based buffer overflow. This vulnerability is listed as CVE-2022-49888. The attack must be carried out from within the local network. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2021-47330 | Linux Kernel up to 5.13.3 tty serial_config memory leak (Nessus ID 249911)

Vuldb Updates
6 months ago
A vulnerability identified as critical has been detected in Linux Kernel up to 5.13.3. Affected by this vulnerability is the function serial_config of the component tty. The manipulation leads to memory leak. This vulnerability is listed as CVE-2021-47330. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2019-15212 | Linux Kernel up to 5.1.7 USB Device rio500.c double free (USN-4115-1 / Nessus ID 249912)

Vuldb Updates
6 months ago
A vulnerability described as critical has been identified in Linux Kernel up to 5.1.7. This issue affects some unknown processing of the file drivers/usb/misc/rio500.c of the component USB Device Handler. Executing manipulation can lead to double free. This vulnerability is registered as CVE-2019-15212. The physical device can be targeted for the attack. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-9097 | Euro Information CIC banque et compte en ligne App 12.56.0 on Android com.cic_prod.bad AndroidManifest.xml improper export of android application components

Vuldb Updates
6 months ago
A vulnerability classified as problematic was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected is an unknown function of the file AndroidManifest.xml of the component com.cic_prod.bad. The manipulation results in improper export of android application components. This vulnerability was named CVE-2025-9097. The attack needs to be approached locally. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

Unmasking the New Sanctions: How a Crypto Exchange Evaded Authorities and Supported Ransomware

Penetration Testing Tools - Metepreter.org
6 months ago

U.S. authorities have once again imposed sanctions on the cryptocurrency exchange Garantex, accusing it of facilitating the laundering of more than $100 million in illicit funds and supporting the operations of ransomware groups. Founded...

The post Unmasking the New Sanctions: How a Crypto Exchange Evaded Authorities and Supported Ransomware appeared first on Penetration Testing Tools.

ddos

PhantomCard: The New Android Malware Using NFC to Steal Your Money

Penetration Testing Tools - Metepreter.org
6 months ago

A new Android malware campaign has emerged, targeting banking customers in Brazil, India, and Southeast Asia, combining contactless fraud via NFC, call interception, and the exploitation of device vulnerabilities. Researchers at ThreatFabric have identified...

The post PhantomCard: The New Android Malware Using NFC to Steal Your Money appeared first on Penetration Testing Tools.

ddos

Managed ad