Aggregator

A vulnerability was found in Google Android 12.0/13.0 and classified as problematic. This affects the function setDataSource of the file initMediaExtractor.cpp. The manipulation results in use after free. This vulnerability is known as CVE-2022-20496. Attacking locally is a requirement. No exploit is available. Applying a patch is advised to resolve this issue.

A vulnerability classified as problematic has been found in Google Android 10.0/11.0/12.0/13.0. Affected is the function getEnabledAccessibilityServiceList of the file AccessibilityManager.java. This manipulation causes Local Privilege Escalation. The identification of this vulnerability is CVE-2022-20495. The attack can only be executed locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability marked as problematic has been reported in Google Android 10.0/11.0/12.0/13.0. This vulnerability affects unknown code of the file AutomaticZenRule.java. This manipulation causes allocation of resources. This vulnerability is registered as CVE-2022-20494. The attack needs to be launched locally. No exploit is available. To fix this issue, it is recommended to deploy a patch.

A vulnerability described as problematic has been identified in Google Android 10.0/11.0/12.0/13.0. The impacted element is the function Condition of the file Condition.java. Executing a manipulation can lead to improper validation of specified quantity in input. This vulnerability is registered as CVE-2022-20493. The attack needs to be launched locally. No exploit is available. A patch should be applied to remediate this issue.

A vulnerability labeled as problematic has been found in Google Android 10.0/11.0/12.0/13.0. This affects an unknown part of the file AutomaticZenRule.java. The manipulation results in allocation of resources. This vulnerability is cataloged as CVE-2022-20492. The attack must be initiated from a local position. There is no exploit available. A patch should be applied to remediate this issue.

The European Union Is Cutting Ties With US Tech Companies
The European Commission made a significant move towards "digital sovereignty" by awarding a 180 million euro - approximately $213 million - cloud contract to a quartet of European providers. The deal will allow the commission and the EU Parliament and council to procure sovereign cloud services.

UPGRADE and DigiSeals Programs at ARPA-H Remain Fully Funded
A U.S. federal grant effort to develop autonomous medical device patching platforms for hospitals evaded the budget-cutting knife of the Trump administration. Program boosters hope to automate cyber defenses so that hospitals of any size can more quickly patch vulnerabilities.

Officials Warned New Models Could Accelerate Cyber Risks Faster Than Rules
Global finance officials meeting in Washington warned that advanced artificial intelligence models could expose structural weaknesses across banking and payment systems, speeding vulnerability discovery and cyber exploitation faster than regulators can build guardrails.

Tyler Buchanan Pleads Guilty to Conspiracy to Commit Wire Fraud and Identity Theft
A senior figure in the Scattered Spider cybercrime group pleaded guilty to one count of conspiracy to commit wire fraud and one count of aggravated identity theft on Friday in US federal district court. The plea marks the conclusion of a digital crime spree by Tyler Robert Buchanan.

The European Union Is Cutting Ties With US Tech Companies
The European Commission made a significant move towards "digital sovereignty" by awarding a 180 million euro - approximately $213 million - cloud contract to a quartet of European providers. The deal will allow the commission and the EU Parliament and council to procure sovereign cloud services.

UPGRADE and DigiSeals Programs at ARPA-H Remain Fully Funded
A U.S. federal grant effort to develop autonomous medical device patching platforms for hospitals evaded the budget-cutting knife of the Trump administration. Program boosters hope to automate cyber defenses so that hospitals of any size can more quickly patch vulnerabilities.

Officials Warned New Models Could Accelerate Cyber Risks Faster Than Rules
Global finance officials meeting in Washington warned that advanced artificial intelligence models could expose structural weaknesses across banking and payment systems, speeding vulnerability discovery and cyber exploitation faster than regulators can build guardrails.

Tyler Buchanan Pleads Guilty to Conspiracy to Commit Wire Fraud and Identity Theft
A senior figure in the Scattered Spider cybercrime group pleaded guilty to one count of conspiracy to commit wire fraud and one count of aggravated identity theft on Friday in US federal district court. The plea marks the conclusion of a digital crime spree by Tyler Robert Buchanan.

A vulnerability, which was classified as critical, has been found in Microsoft Windows 2000/NT. Impacted is an unknown function of the component NT Alerter. The manipulation leads to improper privilege management. This vulnerability is listed as CVE-1999-0630. The attack may be initiated remotely. There is no available exploit. It is advisable to modify the configuration settings.

A vulnerability has been found in Host and classified as critical. The impacted element is an unknown function of the component RPC Portmapper Service. This manipulation causes improper privilege management. This vulnerability is registered as CVE-1999-0632. Remote exploitation of the attack is possible. Furthermore, an exploit is available. You should change the configuration settings.

A vulnerability was found in Host. It has been declared as critical. Affected is an unknown function of the component Echo Service. Executing a manipulation can lead to improper privilege management. This vulnerability appears as CVE-1999-0635. The attack may be performed from remote. In addition, an exploit is available. Updating the configuration settings is suggested.

A vulnerability identified as critical has been detected in Host. This affects an unknown part of the component Daytime Service. This manipulation causes improper privilege management. This vulnerability is handled as CVE-1999-0638. The attack can be initiated remotely. Additionally, an exploit exists. It is advisable to modify the configuration settings.

A vulnerability marked as critical has been reported in Host. This issue affects some unknown processing of the component Gopher Service. Performing a manipulation results in improper privilege management. This vulnerability was named CVE-1999-0640. The attack may be initiated remotely. In addition, an exploit is available. You should change the configuration settings.