CVE-2019-8980 A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures. https://t.co/EKjyi6wFSX
CVE-2019-8979 Koseven through 3.3.9, and Kohana through 3.3.6, has SQL Injection when the order_by() parameter can be controlled. https://t.co/KddgyLCyEM
CVE-2018-20146 An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell. https://t.co/Z5N0dYsPk4
CVE-2013-7469 Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining (CBC) Mode to encrypt private data, making it easier to conduct chosen-plaintext attacks or dictionary attacks. https://t.co/ZvLxhFFp7s
CVE-2019-5727 Splunk Web in Splunk Enterprise 6.5.x before 6.5.5, 6.4.x before 6.4.9, 6.3.x before 6.3.12, 6.2.x before 6.2.14, 6.1.x before 6.1.14, and 6.0.x before 6.0.15 and Splunk Light before 6.6.0 has Persistent XSS, aka ... https://t.co/YMlTgmeWHB
CVE-2018-15380 A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute commands as the root user. The vulnerability is due to insufficient input ... https://t.co/PymWcoW0ha
CVE-2019-3475 A local privilege escalation vulnerability in the famtd component of Micro Focus Filr 3.0 allows a local attacker authenticated as a low privilege user to escalate to root. This vulnerability affects all versions of ... https://t.co/Y4Rkd9aW0F
CVE-2019-3474 A path traversal vulnerability in the web application component of Micro Focus Filr 3.x allows a remote attacker authenticated as a low privilege user to download arbitrary files from the Filr server. This ... https://t.co/SVl1yqy094
CVE-2019-3924 MikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote ... https://t.co/kKnCpew4eU
CVE-2019-1003028 A server-side request forgery vulnerability exists in Jenkins JMS Messaging Plugin 1.1.1 and earlier in SSLCertificateAuthenticationMethod․java, UsernameAuthenticationMethod․java that allows attackers with ... https://t.co/XbJdoq1jO4
- How to Protect Your Mobile Phone’s Security?
- The Truth About Data Breaches
- Creating a Strong and Secure Password
- Keeping Your PC Safe from Malware
- The Shift from Local Currency to Cryptocurrency, is it Secure?