Skip to content
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • LABS
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap
GeekWire
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • LABS
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap

CERT

A Computer Emergency Response Team (CERT) is a group of information security experts responsible for the protection against, detection of and response to an organization’s cybersecurity incidents.

VU#782720: TCG TPM2.0 implementations vulnerable to memory corruption

28 February 2023

Overview

Two buffer overflow vulnerabilities were discovered in the Trusted Platform Module (TPM) 2.0 reference …

Tags CERT

VU#572615: Vulnerabilities in TP-Link routers, WR710N-V1-151022 and Archer C5 V2

17 January 2023

Overview

TP-Link router WR710N-V1-151022 running firmware published 2015-10-22 and Archer-C5-V2-160201 running …

Tags CERT

VU#986018: New Netcomm router models NF20MESH, NF20, and NL1902 vulnerabilities

17 January 2023

Overview

Netcomm router models NF20MESH, NF20, and NL1902 running software versions earlier than R6B035 contain …

Tags CERT

VU#709991: Netatalk contains multiple error and memory management vulnerabilities

16 November 2022

Overview

There are six new vulnerabilities in the latest release of Netatalk (3.1.12) that could allow for Remote …

Tags CERT

VU#709991: Netatalk contains muliple error and memory managment vulnerabilities

16 November 2022

Overview

There are six new vulnerabilities in the latest release of Netatalk (3.1.12) that could allow for Remote …

Tags CERT

VU#730793: Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference

9 November 2022

Overview

The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker …

Tags CERT

VU#434994: Multiple race conditions due to TOCTOU flaws in various UEFI Implementations

8 November 2022

Overview

Multiple Unified Extensible Firmware Interface (UEFI) implementations are vulnerable to code execution …

Tags CERT

VU#794340: OpenSSL 3.0.0 to 3.0.6 decodes some punycode email addresses in X.509 certificates improperly

1 November 2022

Overview

Two buffer overflow vulnerabilities were discovered in OpenSSL versions 3.0.0 through 3.0.6. These …

Tags CERT

VU#730793: Heimdal Kerbos vulnerable to remotely triggered NULL pointer dereference

7 October 2022

Overview

The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker …

Tags CERT

VU#915563: Microsoft Exchange vulnerable to server-side request forgery and remote code execution.

3 October 2022

Overview

Microsoft Exchange 2019 Cumulative Update 23 and earlier versions are vulnerable to a server-side …

Tags CERT

VU#855201: L2 network security controls can be bypassed using VLAN 0 stacking and/or 802.3 headers

27 September 2022

Overview

Layer-2 (L2) network security controls provided by various devices, such as switches, routers, and …

Tags CERT

VU#309662: Signed third party UEFI bootloaders are vulnerable to Secure Boot bypass

11 August 2022

Overview

A security feature bypass vulnerability exists in signed 3rd party UEFI bootloaders that allows bypass …

Tags CERT

VU#495801: muhttpd versions 1.1.5 and earlier are vulnerable to path traversal

4 August 2022

Overview

Versions 1.1.5 and earlier of the mu HTTP deamon (muhttpd) are vulnerable to path traversal via crafted …

Tags CERT

VU#142546: SMA Technologies OpCon UNIX agent adds the same SSH key to all installations

21 June 2022

Overview

SMA Technologies OpCon UNIX agent adds the same SSH key on every installation and subsequent updates. An …

Tags CERT
Older posts
Page1 Page2 … Page17 Next →
Cookie-Free

NVD

  • CVE-2023-1753 – Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12. …31 March 2023
  • CVE-2023-1747 – A vulnerability has been found in IBOS up to 4.5.4 and classified as critical. Affected by …31 March 2023
  • CVE-2023-1754 – Improper Input Validation in GitHub repository thorsten/phpmyfaq prior to 3.1.12. …31 March 2023
  • CVE-2023-28727 – Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authenticat …31 March 2023
  • CVE-2023-1759 – Cross-site Scripting (XSS) – Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12 …31 March 2023
  • CVE-2023-1760 – Cross-site Scripting (XSS) – Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12 …31 March 2023

EXPLOITS

  • SOUND4 IMPACT/FIRST/PULSE/Eco v2.x – Unauthenticated Factory Reset31 March 2023
  • Judging Management System v1.0 – Authentication Bypass31 March 2023
  • SOUND4 IMPACT/FIRST/PULSE/Eco v2.x – Remote Command Execution (RCE)31 March 2023
  • Bangresto 1.0 – SQL Injection31 March 2023
  • SOUND4 IMPACT/FIRST/PULSE/Eco v2.x – Authentication Bypass31 March 2023
  • Textpattern 4.8.8 – Remote Code Execution (RCE) (Authenticated)31 March 2023

SECURELIST

  • Selecting the right MSSP: Guidelines for making an objective decision30 March 2023
  • Financial cyberthreats in 202229 March 2023
  • Copy-paste heist or clipboard-injector attacks on cryptousers28 March 2023
  • How scammers employ IPFS for email phishing27 March 2023
  • Understanding metrics to measure SOC effectiveness24 March 2023
  • Developing an incident response playbook23 March 2023
Copyright © 2023 GeekWire | Cookie-Free | Privacy Policy | We are not responsible for the content of external sites.
Next Page »