[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
  [ vulnerabilities | tools ]
CISA Advisories
US-CERT
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases Two Industrial Control Systems Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases Malware Analysis Report on RESURGE Malware Associated with Ivanti Connect Secure
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases One Industrial Control Systems Advisory
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Releases Four Industrial Control Systems Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Releases Five Industrial Control Systems Advisories
FullDisclosure
Three bypasses of Ubuntu's unprivileged user namespace restrictions
SQL Injection in Admin Functionality - dolphin.prov7.4.2
Stored XSS via Send Message Functionality - dolphin.prov7.4.2
APPLE-SA-03-11-2025-4 visionOS 2.3.2
APPLE-SA-03-11-2025-3 macOS Sequoia 15.3.2
APPLE-SA-03-11-2025-2 iOS 18.3.2 and iPadOS 18.3.2
APPLE-SA-03-11-2025-1 Safari 18.3.1
CVE-2019-16261 (UPDATE): Unauthenticated POST requests to Tripp Lite UPS Systems
Multiple sandbox escapes in asteval python sandboxing module
SEC Consult SA-20250226-0 :: Multiple vulnerabilities in Siemens A8000 CP-8050 & CP-8031 PLC
US CERT Weekly
Vulnerability Summary for the Week of March 24, 2025
Vulnerability Summary for the Week of March 17, 2025
Vulnerability Summary for the Week of March 10, 2025
Vulnerability Summary for the Week of March 3, 2025
Vulnerability Summary for the Week of February 24, 2025
Vulnerability Summary for the Week of February 17, 2025
Vulnerability Summary for the Week of February 10, 2025
Vulnerability Summary for the Week of February 3, 2025
Vulnerability Summary for the Week of January 27, 2025
Vulnerability Summary for the Week of January 20, 2025
Open Source Security
Re: Linux kernel: CVE-2024-57882 fix did not prevent data stream corruption in the MPTCP protocol
CVE-2025-30676: Apache OFBiz: Stored XSS Vulnerability
CVE-2025-30177: Apache Camel: Camel-Undertow Message Header Injection via Improper Filtering
Linux kernel: CVE-2024-57882 fix did not prevent data stream corruption in the MPTCP protocol
CVE-2025-29868: Apache Answer: Using externally referenced images can leak user privacy.
CVE-2025-30065: Apache Parquet Java: Arbitrary code execution in the parquet-avro module when reading an Avro schema from a Parquet file metadata
CVE-2025-27427: Apache ActiveMQ Artemis: Address routing-type can be updated by user without the createAddress permission
CVE-2025-31160 Atop 2.11 heap problems
Re: atop: Heap corruption
use-after-free (maybe?) in libspf2
© 2024 RiskDiscovery | Sponsored by: Deception Logic