【漏洞通告】Apache Tomcat条件竞争代码执行漏洞(CVE-2024-50379)
通告编号:NS-2024-00372024-12-18TAG:Tomcat、条件竞争、代码执行、CVE-2024-50379漏洞危害:攻击者利用该漏洞,可实现远程代码执行版本:1.01漏洞概述近日,绿
不安全
5 Reasons to Create a Certificate Lifecycle Management Policy for the New Year
2 months 1 week ago
Are you in the market for a good New Year’s resolution? You won’t find a more rewarding one (at
漏洞通告 | Apache Tomcat 远程代码执行漏洞
2 months 1 week ago
漏洞概况Tomcat 是一个开源的、轻量级的 Web 应用服务器 和 Servlet 容器。它由 Apache 软件基金会下的 Jakarta 项目开发,是目前最流行的 Java Web 服务器之一。
瞄准安全研究人员!攻击者在GitHub上使用伪造PoC窃取39万WordPress凭证
2 months 1 week ago
Datadog Security Labs的网络安全研究人员发现,名为MUT-1244的威胁行为者发起了一项为期一年的恶意攻击活动,导致超过39万个WordPress凭证被盗。研究称,该行为者利用一个
CVE-2024-12373
2 months 1 week ago
Critical Threat
CVE-2024-12372
2 months 1 week ago
Critical Threat
CVE-2024-12371
2 months 1 week ago
Critical Threat
Effective Phishing Campaign Targeting European Companies and Institutions
2 months 1 week ago
Executive SummaryUnit 42 researchers recently investigated a phishing campaign tar
直播预约 | 数安三人行:金融行业在攻防演练中的实战智慧
2 months 1 week ago
12月19日,未来金融研究所携手腾讯安全共同举办的“安全先行者”主题研讨即将开播。本次直播以“金融安全,攻防有道——金融行业在攻防演练中的实战智慧”为主题,探讨在重保场景下,金融机构应如何顺应攻防趋势
研究发现:CVSS 漏洞评分系统存在严重缺陷
2 months 1 week ago
摩根大通(JPMorganChase)的网络安全专家认为,网络安全行业可能因对CVSS评分过于依赖而误解了漏洞的严重程度,从而影响了修复工作的进展。在本周四的黑帽欧洲大会上,代表们接到了一个通知:当前
每日安全动态推送(24/12/18)
2 months 1 week ago
• Apache Struts 框架关键远程代码执行漏洞Critical RCE Vulnerability in Apache Struts Framework近期揭露的Apache Struts
MINGO, Hedera Based Wallet, Sets Sights On The Global Ticketing Industry
2 months 1 week ago
Kingstown, St. Vincent and the Grenadines, December 17th, 2024/Chainwire/--MINGO, a digital wallet b
OpenAI向部分开发者推出GPT-o1推理模型的完整版 仅限Tier 5+开发者
2 months 1 week ago
0xFútbol Announces Exclusive $FUTBOL Presale to Celebrate XDC’s Strategic Investment
2 months 1 week ago
For decades, fútbol’s ecosystem has upheld a status quo that leaves fans disconnected—without a voic
本田与日产宣布将合并
2 months 1 week ago
本田与日产汽车将就业务整合展开磋商,将就成立控股公司、未来还将考虑加入三菱汽车。在世界汽车产业中,美国特斯拉和中国企业等纯电动汽车(EV)企业正在威胁传统的大企业,在技术和参与者两方面,正
陪审团裁定刺死硅谷高管的企业家犯有二级谋杀罪
2 months 1 week ago
MobileCoin 首席产品官、Square 前 CTO、Cash App 创始人 Bob Lee 于 2023 年 4 月 4 日凌晨在旧金山遇刺身亡。在 Java 社区他有 Craz
Guns后台任意文件上传漏洞分析
2 months 1 week ago
Travel Cybersecurity Threats and How to Stay Protected
2 months 1 week ago
Acknowledging the risks involved in your journey is essential as you proceed. The risks come fr
CrowdStrike Allies With Salt Security to Improve API Security
2 months 1 week ago
CrowdStrike and Salt Security have extended their alliance to make it simpler to feed applicatio
The TechBeat: Everything You Need to Know About the Lumoz Token Generation Event (12/18/2024)
2 months 1 week ago
Checked
1 hour 9 minutes ago
unSafe.sh - 不安全
不安全 feed