Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2601-2625 di 3856 risultati
Pagina 105 di 155

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2024-6174 When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.18-02-20262601
MSRC Security UpdateCVE-2023-28938 Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.18-02-20262602
MSRC Security UpdateCVE-2021-22918 Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().18-02-20262603
MSRC Security UpdateCVE-2024-46981 Redis' Lua library commands may lead to remote code execution18-02-20262604
MSRC Security UpdateCVE-2024-54458 scsi: ufs: bsg: Set bsg_queue to NULL after removal18-02-20262605
MSRC Security UpdateCVE-2023-24531 Output of "go env" does not sanitize values in cmd/go18-02-20262606
MSRC Security UpdateCVE-2023-28320 A denial of service vulnerability exists in curl 18-02-20262607
MSRC Security UpdateCVE-2025-32990 Gnutls: vulnerability in gnutls certtool template parsing18-02-20262608
MSRC Security UpdateCVE-2023-28736 Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.18-02-20262609
MSRC Security UpdateCVE-2025-27423 Improper Input Validation in Vim18-02-20262610
MSRC Security UpdateCVE-2025-22104 ibmvnic: Use kernel helpers for hex dumps18-02-20262611
MSRC Security UpdateCVE-2023-52979 squashfs: harden sanity check in squashfs_read_xattr_id_table18-02-20262612
MSRC Security UpdateCVE-2022-23806 Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.18-02-20262613
MSRC Security UpdateCVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow18-02-20262614
MSRC Security UpdateCVE-2025-21729 wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion18-02-20262615
MSRC Security UpdateCVE-2024-57975 btrfs: do proper folio cleanup when run_delalloc_nocow() failed18-02-20262616
MSRC Security UpdateCVE-2025-32989 Gnutls: vulnerability in gnutls sct extension parsing18-02-20262617
MSRC Security UpdateCVE-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.18-02-20262618
MSRC Security UpdateCVE-2024-26982 Squashfs: check the inode number is not the invalid value of zero18-02-20262619
MSRC Security UpdateCVE-2024-57852 firmware: qcom: scm: smc: Handle missing SCM device18-02-20262620
MSRC Security UpdateCVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials18-02-20262621
MSRC Security UpdateCVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.18-02-20262622
MSRC Security UpdateCVE-2016-9179 It was found that Lynx doesn't parse the authority component of the URL correctly18-02-20262623
MSRC Security UpdateCVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checks18-02-20262624
MSRC Security UpdateCVE-2025-32988 Gnutls: vulnerability in gnutls othername san export18-02-20262625
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter