Aggregator

A vulnerability classified as problematic has been found in F5 BIG-IP, BIG-IP Next CNF and BIG-IP Next SPK. This affects an unknown part of the component MPTCP. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-41164. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in F5 BIG-IP up to 16.1.4/17.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Stateless Virtual Server. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-39778. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in F5 BIG-IP up to 16.1.4. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to resource consumption. This vulnerability is known as CVE-2024-41727. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in F5 NGINX Plus. It has been classified as critical. Affected is an unknown function of the component MQTT Pre-Read Module. The manipulation leads to expired pointer dereference. This vulnerability is traded as CVE-2024-39792. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in F5 BIG-IP Next Central Manager up to 20.2.0 and classified as problematic. This issue affects some unknown processing of the component QKView Handler. The manipulation leads to sensitive information in log files. The identification of this vulnerability is CVE-2024-41719. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in DevikaAI and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-7790. The attack can be initiated remotely. There is no exploit available.

迪士尼寻求以受害者为 Disney+ 订阅者为由驳回过敏致死诉讼。Kanokporn Tangsuan 是 NYU Langone 的医生，有严重的乳制品和坚果过敏症，她于 2023 年 10 月与家人去佛罗里达的迪士尼乐园，在迪士尼之泉的 Raglan Road Irish Pub 就餐，她将自己的过敏症告诉了服务员，服务员表示保证会满足她的要求。但就餐之后的当晚她就因为急性过敏反应送往医院，随后在医院去世。她的丈夫 Jeffrey Piccolo 提起了诉讼。迪士尼律师根据 Disney+ 的相关条款寻求驳回诉讼。Disney+ 中的条款声明用户与迪士尼公司通过仲裁解决所有纠纷。Piccolo 曾在 2019 年通过 PS 游戏机试用 Disney+ 时同意了这一条款，而他们在 2023 年 10 月通过 My Disney Experience 购买迪士尼乐园门票时也同意了类似的声明。Piccolo 的律师认为迪士尼的这一主张简直是超现实，不合理也不公平，冲击了司法良知，法院不应该执行此类协议。

Голландский хакер нашел брешь в солнечных энергосистемах.

Cloud services and thus millions of end users who access them could have been affected by the poisoning of artifacts in the development workflow of open source projects.

Решение суда ограничивает сбор данных о местоположении.

As we move through 2024, three events are causing significant disruption in the Public Key Infrastructure (PKI) landscape – the Entrust CA distrust incident, Google’s proposal for 90-day TLS certificate validity, and post-quantum cryptography (PQC) standardization. These events come with unique challenges and opportunities and are compelling organizations to rethink their approach to PKI and […]

The post Top Trends in 2024 Reshaping the PKI Landscape appeared first on Security Boulevard.

By nurturing a security-centric work culture that involves everybody, organizations can overcome challenges with greater agility and confidence.

Maksim Silnikau and his associates are accused of developing and distributing notorious ransomware strains such as Reveton and Ransom Cartel, among other criminal acts.

保护轨道交通关键信息基础设施安全！

今天给大家推送一个专门用数据解读世界的工具：我们的数据世界。

“企业正在投资数字创新，如生成式人工智能，然而数字投资带来了新的攻击面，需要一套新的保护。

Security experts welcome the long-anticipated publication of the first post-quantum cryptographic standards as a significant milestone.

General Motors handled drivers’ data in a “false, deceptive, and misleading” way, according to Texa