Italiano
English
Esce oggi il Cybersecurity Act, nuovo strumento normativo europeo che punta a stabilire delle regole per una sicurezza informatica più coesa e comunitaria. Si tratta di un Regolamento che ha lo scopo di creare un quadro europeo ben definito sulla certificazione della sicurezza informatica di...
NEWS
SERVICES
|
The service offers a platform that allows Registrars to check for any performance and security problems present on... |
This service shows statistics related to Tweets related to Cyber-Security, allowing to search them by keywords such as... |
An onthology represents an important resource for the organisation of a domain's knowledge in a more detailed way by... |
The service detects malicious signatures in analysed files, by scanning it with 57 different commercial anti-malware.... |
LATEST CVE
| Published | Description | |
|---|---|---|
| CVE-2019-13991 |
19-07-2019 17:15:11 |
Embedded systems based on Arduino before Rev3 allow remote attackers to send data to LEDs (directly connected to GPIO pins) via a laser, because of LED photosensitivity. |
| CVE-2019-7590 |
19-07-2019 17:15:11 |
ExacqVision Server?s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. If an authenticated user is able to insert code in their system root path it potentially can be executed during the application startup. This could allow the authenticated user to elevate privileges on the system. This issue affects: Exacq Technologies, Inc. exacqVision Server 9.6; 9.8. This issue does not affect: Exacq Technologies, Inc. exacqVision Server version 9.4 and prior versions; 19.03. It is not known whether this issue affects: Exacq Technologies, Inc. exacqVision Server versions prior to 8.4. |
| CVE-2019-5680 |
19-07-2019 16:15:12 |
In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges. |
| CVE-2019-13989 |
19-07-2019 16:15:12 |
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() function in main.c. |
| CVE-2019-12821 |
19-07-2019 14:15:11 |
A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code containing information about the device ID, it is possible to connect an arbitrary device and gain full access to it. The device ID has an initial "JSW" substring followed by a six digit number that depends on the specific device. |
Pages
LATEST EXPLOIT
| Date | Title | Platform | Author |
|---|---|---|---|
|
18-07-2019 |
WordPress Plugin OneSignal 1.17.5 - 'subdomain' Persistent Cross-Site Scripting | linux | LiquidWorm |
|
18-07-2019 |
Microsoft Windows 10 1903/1809 - RPCSS Activation Kernel Security Callback Privilege Escalation | windows | Google Security Research |
|
17-07-2019 |
MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow | windows | hyp3rlinx |
|
17-07-2019 |
Windows - NtUserSetWindowFNID Win32k User Callback Privilege Escalation (Metasploit) | windows | Metasploit |
|
17-07-2019 |
Oracle Siebel CRM 19.0 - Persistent Cross-Site Scripting | linux | Sarath Nair |