Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3176-3200 di 3852 risultati
Pagina 128 di 155

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2024-45310 runc can be confused to create empty files/directories on the host18-02-20263176
MSRC Security UpdateCVE-2025-49812 Apache HTTP Server: mod_ssl TLS upgrade attack18-02-20263177
MSRC Security UpdateCVE-2025-21814 ptp: Ensure info->enable callback is always set18-02-20263178
MSRC Security UpdateCVE-2023-27536 An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to check for changes in the CURLOPT_GSSAPI_DELEGATION option. This vulnerability affects krb5/kerberos/negotiate/GSSAPI transfers and could potentially result in unauthorized access to sensitive information. The safest option is to not reuse connections if the CURLOPT_GSSAPI_DELEGATION option has been changed.18-02-20263179
MSRC Security UpdateCVE-2024-26582 net: tls: fix use-after-free with partial reads and async decrypt18-02-20263180
MSRC Security UpdateCVE-2023-46853 In Memcached before 1.6.22 an off-by-one error exists when processing proxy requests in proxy mode if \n is used instead of \r\n.18-02-20263181
MSRC Security UpdateCVE-2024-11584 cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.18-02-20263182
MSRC Security UpdateCVE-2024-26928 smb: client: fix potential UAF in cifs_debug_files_proc_show()18-02-20263183
MSRC Security UpdateCVE-2025-21727 padata: fix UAF in padata_reorder18-02-20263184
MSRC Security UpdateCVE-2024-38473 Apache HTTP Server proxy encoding problem18-02-20263185
MSRC Security UpdateCVE-2025-39713 media: rainshadow-cec: fix TOCTOU race condition in rain_interrupt()18-02-20263186
MSRC Security UpdateCVE-2024-26585 tls: fix race between tx work scheduling and socket close18-02-20263187
MSRC Security UpdateCVE-2023-46852 In Memcached before 1.6.22 a buffer overflow exists when processing multiget requests in proxy mode if there are many spaces after the "get" substring.18-02-20263188
MSRC Security UpdateCVE-2025-21820 tty: xilinx_uartps: split sysrq handling18-02-20263189
MSRC Security UpdateCVE-2025-53020 Apache HTTP Server: HTTP/2 DoS by Memory Increase18-02-20263190
MSRC Security UpdateCVE-2025-21731 nbd: don't allow reconnect after disconnect18-02-20263191
MSRC Security UpdateCVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgr18-02-20263192
MSRC Security UpdateCVE-2024-6174 When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.18-02-20263193
MSRC Security UpdateCVE-2021-22918 Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().18-02-20263194
MSRC Security UpdateCVE-2023-28938 Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.18-02-20263195
MSRC Security UpdateCVE-2024-46981 Redis' Lua library commands may lead to remote code execution18-02-20263196
MSRC Security UpdateCVE-2024-54458 scsi: ufs: bsg: Set bsg_queue to NULL after removal18-02-20263197
MSRC Security UpdateCVE-2023-24531 Output of "go env" does not sanitize values in cmd/go18-02-20263198
MSRC Security UpdateCVE-2023-28320 A denial of service vulnerability exists in curl 18-02-20263199
MSRC Security UpdateCVE-2025-32990 Gnutls: vulnerability in gnutls certtool template parsing18-02-20263200
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter