cyberintel.kalymoon.com · 32314 articles · updated every 4 hours · grows forever
A vulnerability identified as critical has been detected in changmingxie tcc-transaction up to 2.1.0 . This issue affects the function Fastjson.parseObject of the component Fastjson AutoType REST API …
A vulnerability labeled as critical has been found in Dromara lamp-cloud up to 5.6.2 . Impacted is the function GroovyClassLoader.parseClass of the component Message Template Handler . Such manipulati…
A vulnerability marked as critical has been reported in GNU LibreDWG up to 0.14 . The affected element is the function read_2004_compressed_section of the file src/decode.c of the component Dwgread Ut…
A vulnerability described as problematic has been identified in GNU LibreDWG up to 0.14 . The impacted element is the function decompress_R2004_section of the file src/decode.c of the component Dwgrea…
A vulnerability classified as critical has been found in GNU LibreDWG up to 0.14 . This affects the function decompress_R2004_section of the file src/decode.c of the component Dwgread Utility . The ma…
A vulnerability classified as problematic was found in GNU LibreDWG up to 0.14 . This impacts the function dwg_next_entity of the file src/decode.c of the component DWG File Handler . The manipulation…
A vulnerability, which was classified as problematic , has been found in GNU LibreDWG up to 0.14 . Affected is the function bit_convert_TU of the file programs/dwggrep.c of the component Dwggrep Utili…
A vulnerability, which was classified as problematic , was found in Apache Airflow Google Provider up to 21.x . Affected by this vulnerability is an unknown functionality of the component SSH Host-Key…
A vulnerability has been found in rust-lang Cargo up to 1.95.x and classified as critical . Affected by this issue is some unknown functionality. Performing a manipulation results in symlink following…
A vulnerability was found in rust-lang Cargo up to 1.95.x and classified as problematic . This affects an unknown part. Executing a manipulation can lead to use of non-canonical url paths for authoriz…
A vulnerability was found in CP Plus CP-E38Q, CP-E48Q, CP-E25Q, CP-E35Q, CP-E45Q, CP-E28Q, CP-E21Q, CP-E31Q, CP-E41Q, CP-E24Q, CP-Z43Q, CP-E34Q, CP-E44Q, CP-T31Q, CP-V48Q, CP-V41Q and CP-Z45Q . It has…
Dutch authorities have seized more than 800 servers and arrested two individuals as part of a major investigation into a hosting infrastructure allegedly used to support cyberattacks, disinformation c…
Security researchers have revealed that WhatsApp chat histories may be stored unencrypted on both macOS and iOS devices, raising fresh concerns about local data protection and cross-application access…
A new wave of targeted espionage attacks has put technology professionals across the United States, Israel, and the United Arab Emirates on high alert. The threat comes from an Iran-linked hacking gro…
Italian law enforcement has dismantled a large-scale audiovisual piracy network centered around a sophisticated application called CINEMAGOAL, which enabled users to access premium streaming services …
A sharp rise in internet-wide scanning activity targeting SonicWall firewall management interfaces has been detected, raising concerns about a potential pre-disclosure reconnaissance phase tied to new…
From fake F1 streams to counterfeit merch, fraudsters are exploiting fans online and the Bitdefender Cybersecurity Grand Prix Fan Threat Index details how
The Kali365 phishing-as-a-service platform lowers the barrier of entry for cybercriminals, said the FBI
As AI coding assistants accelerate software development, one OWASP-backed open-source project is arguing that dependency security tooling still arrives too late to be truly useful. CVE Lite CLI , a Ja…
U.S. state governments are taking on a larger role in cybersecurity to help protect local communities and essential services. Many states are building state-led cyber defense programs, including cyber…
Hackers accessed names, addresses, Social Security numbers, financial information, and medical data from third-party partner repositories. The post DocketWise Data Breach Impacts 143,000 appeared firs…
Published within a 15-minute window, the malicious tags introduced backdoors to exfiltrate CI secrets. The post Laravel-Lang Packages Poisoned for Malware Delivery appeared first on SecurityWeek .
Many findings have been confirmed to be critical or high-severity vulnerabilities and the number will continue to increase. The post Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across …
Threat actors stole files containing names and protected health information from the healthcare organization’s systems. The post 266,000 Affected by Data Breach at Radiology Associates of Richmond app…