Italiano
English
Pubblicato il bando per la quinta edizione del Master in Cybersecurity dell'Università di Pisa, anno accademico 2020/21.
Per immatricolarsi al Master, l’interessato deve collegarsi al Portale Alice all’indirizzo https://www.studenti.unipi.it...
NOTIZIE & EVENTI
SERVIZI
|
Il servizio analizza un log di richieste DNS e identifica se all’interno sono stati risolti dei nomi a dominio che... |
Il servizio mostra una rappresentazione 3D del traffico di rete relativo ad attacchi ad una honeypot a Pisa. Inoltre,... |
Un’ontologia rappresenta una risorsa per organizzare la conoscenza di un dominio in maniera più dettagliata attraverso... |
Il servizio analizza gruppi di email file (formato .eml) per identificare le email indesiderate (SPAM). Il servizio... |
ULTIMI CVE
| Published | Description | |
|---|---|---|
| CVE-2020-7268 |
16-09-2020 02:15:00 |
Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricted directory via external input to construct a path name that should be within a restricted directory. |
| CVE-2020-10768 |
16-09-2020 00:15:00 |
A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality. |
| CVE-2020-7297 |
16-09-2020 00:15:00 |
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user interface. |
| CVE-2020-10766 |
15-09-2020 23:15:00 |
A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality. |
| CVE-2020-10767 |
15-09-2020 23:15:00 |
A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality. |
Pages
ULTIMI EXPLOIT
| Date | Title | Platform | Author |
|---|---|---|---|
|
15-09-2020 |
ThinkAdmin 6 - Arbitrarily File Read | php | Hzllaga |
|
15-09-2020 |
Tailor MS 1.0 - Reflected Cross-Site Scripting | php | boku |
|
14-09-2020 |
Joomla! paGO Commerce 2.5.9.0 - SQL Injection (Authenticated) | php | Mehmet Kelepçe |
|
14-09-2020 |
Rapid7 Nexpose Installer 6.6.39 - 'nexposeengine' Unquoted Service Path | windows | LiquidWorm |
|
14-09-2020 |
RAD SecFlow-1v SF_0290_2.3.01.26 - Cross-Site Request Forgery (Reboot) | hardware | Jonatan Schor |
Pages
CERT feeds
| Published | Title | URL |
|---|---|---|
| 14-04-2020 | Vulnerabilità critica in VMware vCenter Server | CERT LINK |
| 10-04-2020 | Aggiornamenti di sicurezza per prodotti Juniper Networks (aprile 2020) | CERT LINK |
| 08-04-2020 | Risolte gravi vulnerabilità in Mozilla Firefox 75 | CERT LINK |
| 08-04-2020 | Google risolve diverse vulnerabilità in Chrome 81 | CERT LINK |
| 07-04-2020 | Aggiornamento di sicurezza Android (aprile 2020) | CERT LINK |