|
The service offers a platform that allows Registrars to check for any performance and security problems present on... |
This service analyses sets of email file in .eml format to identify the unsolicited ones (SPAM). Moreover, the service... |
The service aims at offering a representation of the Cybersecurity domain through the creation of a controlled... |
The service offers a survey to check the compliance of an organization with the GDPR (General Data Protection... |
| Published | Description | |
|---|---|---|
| CVE-2020-11071 |
12-05-2020 01:15:00 |
SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting baton. This is fixed in version 0.27.2. |
| CVE-2020-11072 |
12-05-2020 01:15:00 |
In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting baton. This has been fixed in slp-validate in version 1.2.1. Additonally, slpjs version 0.27.2 has a related fix under related CVE-2020-11071. |
| CVE-2020-10024 |
11-05-2020 23:15:00 |
The arm platform-specific code uses a signed integer comparison when validating system call numbers. An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel. See NCC-ZEP-001 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and later versions. version 2.1.0 and later versions. |
| CVE-2020-10022 |
11-05-2020 23:15:00 |
A malformed JSON payload that is received from an UpdateHub server may trigger memory corruption in the Zephyr OS. This could result in a denial of service in the best case, or code execution in the worst case. See NCC-NCC-016 This issue affects: zephyrproject-rtos zephyr version 2.1.0 and later versions. version 2.2.0 and later versions. |
| CVE-2020-10027 |
11-05-2020 23:15:00 |
An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel. See NCC-ZEP-001 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and later versions. version 2.1.0 and later versions. |
| Date | Title | Platform | Author |
|---|---|---|---|
|
06-04-2020 |
UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service (PoC) | windows | chuyreds |
|
06-04-2020 |
Memu Play 7.1.3 - Insecure Folder Permissions | windows | chuyreds |
|
06-04-2020 |
Bolt CMS 3.7.0 - Authenticated Remote Code Execution | php | r3m0t3nu11 |
|
06-04-2020 |
pfSense 2.4.4-P3 - 'User Manager' Persistent Cross-Site Scripting | freebsd | Matthew Aberegg |
|
06-04-2020 |
Microsoft NET USE win10 - Insufficient Authentication Logic | windows | hyp3rlinx |
| Published | Title | URL |
|---|---|---|
| 15-05-2019 | Vulnerabilità in prodotti Cisco (13-14 maggio 2019) | CERT LINK |
| 15-05-2019 | Vulnerabilità in Samba | CERT LINK |
| 15-05-2019 | Aggiornamento di sicurezza per Google Chrome (14 maggio 2019) | CERT LINK |
| 15-05-2019 | Aggiornamenti di sicurezza per prodotti Microsoft (maggio 2019) | CERT LINK |
Italiano
English