Cyber Security Newsfeeds from around the world
A vulnerability was found in Linux Kernel up to 5.3.3 (Operating System). It has been classified as critical. This affects the function
of the file net/ipv6/fib6_rules.c . The manipulation with an unknown input leads to a memory corruption vulnerabili…
Continue Reading2) Deserialization of untrusted data. Severity: High. CVSSv3: [PCI] CVE-ID: CVE-2017-17485. CWE-ID: Description. CWE-502 – Deserialization of Untrusted Data The vulnerability allows a remote attacker to execute arbitrary code on the target system. The …
Continue Readingexperts. A recently published report mentions that a severe vulnerability in the Linux operating system could allow a nearby device to use a
to lock or compromise the target machine. The vulnerability resides in the RTLWIFI driver, used for compatibil…
Continue ReadingBy Rick Anderson, delivery director, Wind River. While ATM security is not necessarily “life critical” as with many other industries (think transportation, medical and some industrial applications) there are certainly financial and identity theft risks…
Continue Reading. It sounds familiar, but I don’t think Humphrey Bogart is running the gin joint this time around. Questionable Casablanca references aside, Amnesty International has reported another attack against human rights workers. In this case, a pair of Morocca…
Continue ReadingA potentially dangerous vulnerability was discovered in the Linux Kernel, affecting Realtek Wi-Fi chips that could have been used to crash or compromise any systems running Linux. Security researcher Nico Waisman discovered the flaw, now dubbed CVE-201…
Continue ReadingA potentially dangerous vulnerability was discovered in the Linux Kernel, affecting Realtek Wi-Fi chips that could have been used to crash or compromise any systems running Linux. Security researcher Nico Waisman discovered the flaw, now dubbed CVE-201…
Continue ReadingDate Discovered. October 15, 2019 Description. Palo Alto Networks GlobalProtect Agent is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to gain elevated privileges on the affected system. Versions prior to P…
Continue Reading.
A security researcher has published a proof-of-concept (PoC) exploit for the recently addressed Android zero-day vulnerability that impacts Pixel 2 devices. Tracked as CVE-2019-2215, the existence of this vulnerability was made public at the beginni…
Continue ReadingA potentially serious vulnerability in Linux may make it possible for nearby devices to use Wi-Fi signals to crash or fully compromise vulnerable machines, a security researcher said. The flaw is located in the RTLWIFI driver, which is used to support …
Continue Reading