Aggregator

CVE-2016-7431 | Oracle M3000/M4000/M5000/M8000/M9000 XCP Firmware input validation (VU#633847 / Nessus ID 95265)

17 hours 32 minutes ago

A vulnerability was found in Oracle M3000, M4000, M5000, M8000 and M9000 and classified as problematic. This impacts an unknown function of the component XCP Firmware. Executing a manipulation can lead to improper input validation. This vulnerability appears as CVE-2016-7431. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.

vuldb.com

Exim 新 BDAT 漏洞致 GnuTLS 构建面临代码执行风险

HackerNews

17 hours 34 minutes ago

Exim 发布了安全更新，以修复一个严重的安全问题。该问题影响特定配置，可能导致内存损坏和潜在的代码执行。 Exim 是一款开源邮件传输代理（MTA），专为类 Unix 系统设计，用于接收、路由和传递电子邮件。此漏洞编号为 CVE - 2026 - 45185，又名 “Dead.Letter”，是 Exim 在通过 GnuTLS 处理 TLS ...

hackernews

Exim 新 BDAT 漏洞致 GnuTLS 构建面临代码执行风险

不安全

17 hours 34 minutes ago

error code: 1003

韩国总统幕僚提议向全民发放“ AI 红利”

不安全

17 hours 42 minutes ago

韩国总统府政策室长金容范(Kim Yong-beom)在 Facebook 上发帖，提议将韩国芯片制造商一部分激增的利润进行再分配，将 AI 繁荣所产生的利润与全体公民共享。金容范认为 A

谷歌新安全功能可帮助发现间谍软件攻击

不安全

17 hours 47 minutes ago

谷歌公司正在安卓中推出一项新的可选择加入功能，旨在帮助安全研究人员调查间谍软件攻击。该功能被称为 “入侵日志记录”，是安卓高级保护模式的一部分，该模式是谷歌去年推出的，一种可选择加入的特殊安全模式，启

注意喚起: GUARDIANWALL MailSuiteにおけるスタックベースのバッファオーバーフローの脆弱性に関する注意喚起 (公開)

統合版 JPCERT/CC

17 hours 49 minutes ago

WorldLeaks

Dark Feed IO

17 hours 51 minutes ago

You must login to view this content

cohenido

微软开始测试Windows 11云端驱动程序恢复功能检测到异常驱动时回滚到旧版本

不安全

17 hours 51 minutes ago

RubyGems приостановил регистрацию новых пользователей. Репозиторий превратился в минное поле для программистов

Securitylab.ru

17 hours 52 minutes ago

Сотни вредоносных пакетов показали, насколько быстро привычная инфраструктура может стать ловушкой.

[GUEST DIARY] Tearing apart website fraud to see how it works., (Wed, May 13th)

不安全

17 hours 53 minutes ago

[This is a Guest Diary by Joshua Nikolson, an ISC Intern and part of the SANS.edu Bachelor's degree

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

不安全

17 hours 59 minutes ago

Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator

Security Affairs

17 hours 59 minutes ago

Fortinet patched critical flaws in FortiSandbox and FortiAuthenticator that could let attackers remotely execute code on unpatched systems. Fortinet addressed two critical vulnerabilities affecting FortiSandbox and FortiAuthenticator. The flaws could allow attackers to execute arbitrary commands or code on unpatched systems. The first vulnerability, tracked as CVE-2026-44277, is an improper access control issue in FortiAuthenticator. […]

Pierluigi Paganini

Google 宣布以 AI 为核心的新笔电 Googlebook

不安全

18 hours 8 minutes ago

Google 宣布了运行桌面模式 Android 操作系统的新笔电 Googlebook，但除了一遍遍强调 AI、AI 以及 AI 外没有透露更多信息，比如实现 AI 操作所需的运算是否要

Sicurezza dei dispositivi periferici

不安全

18 hours 10 minutes ago

Claudio Sartor mi ha segnalato questa pagina: "Rapporto di sintesi sulla cibersicurezza dei dispos

Мы коснулись дна реальности: создан прибор, способный почувствовать тепловой след одного-единственного фотона

Securitylab.ru

18 hours 19 minutes ago

Новый датчик из Аалто — единственная надежда человечества поймать темную материю за хвост.

腾讯元宝上线新功能支持总结微信聊天记录

不安全

18 hours 20 minutes ago

据元宝微信公众号消息，腾讯元宝宣布支持总结微信聊天记录。腾讯元宝在发文中表示，用户可以在微信里选中需要处理的聊天记录，点击“转发到其他应用”，如果用户已下载元宝app，即可在列表中选择元宝，并将内容一

NetSPI AI-powered Continuous Pentesting identifies high-impact vulnerabilities

Help Net Security

18 hours 22 minutes ago

NetSPI launched AI-powered Continuous Pentesting offerings, designed to help organizations continuously identify, validate and reduce risk across dynamic external and cloud environments. Organizations are managing an expanding number of potential entry points as new internet-facing resources, including cloud assets, applications, APIs, and AI-centric assets, are introduced. Each deployment can create new risk, making it harder for security teams to maintain a view of exposure without continuous, validated insight. NetSPI’s Continuous Pentesting offerings include Continuous External … More →

The post NetSPI AI-powered Continuous Pentesting identifies high-impact vulnerabilities appeared first on Help Net Security.

Industry News

用心极其险恶！TanStack攻击中黑客预留死人开关检测到凭据撤销就执行rm -rf ~/

不安全

18 hours 23 minutes ago

Bitcoin Suisse expands with Digital Asset License and Investment Business Act Registration Approval

不安全

18 hours 28 minutes ago

New StorybyChainwirebyChainwire@chainwireThe world's leading crypto & blockchain press release dist

Aggregator

Managed ad