Security
Headlines
HeadlinesLatestCVEs

Tag

#chrome

[updated]REvil ransomware disappears after Tor services hijacked

For the second time this year the REvil ransomware group has disappeared off the grid. Will they come back again? All bets are open. Categories: Ransomware Tags: BlackMatter darkside kasey ransomware revil Tor service *( Read more... ( https://blog.malwarebytes.com/ransomware/2021/10/revil-ransomware-gang-disappears-after-tor-services-hijacked/ ) )* The post [updated]REvil ransomware disappears after Tor services hijacked appeared first on Malwarebytes Labs.

Malwarebytes
Open in Source
#Exploits and vulnerabilities#vulnerability#google#Exploits and vulnerabilities#chrome#chromium#exploit kit#magniber#Magnitude#puzzlemaker#vulnerability#windows#Hacking#D214#Elk Grove#Minh#rickroll#school prank#school rickroll#vulnerable IoT#WhiteHoodHacker#How-tos#deactivate snapchat#delete snapchat#snapchat#Threat Intelligence#Magecart#q-logger#skimmers#web#Ransomware#backups#BlackMatter#cisa#darkside#fbi#lockbit#mfa#MITRE#new cooperative#NSA#olympus#revil#Ransomware#BlackMatter#darkside#kasey#ransomware#revil#Tor service
CVE-2021-33609: fix: Add row limit to DataCommunicator row data requests by TatuLund · Pull Request #12415 · vaadin/framework

Missing check in DataCommunicator class in com.vaadin:vaadin-server versions 8.0.0 through 8.14.0 (Vaadin 8.0.0 through 8.14.0) allows authenticated network attacker to cause heap exhaustion by requesting too many rows of data.

CVE-2021-37975: Stable Channel Update for Desktop

Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2021-30632

Out of bounds write in V8 in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2021-22261: Stored XSS in the Jira issue detail pages (#328389) · Issues · GitLab.org / GitLab · GitLab

A stored Cross-Site Scripting vulnerability in the Jira integration in all GitLab versions starting from 13.9 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting from 14.2 before 14.2.2 allows an attacker to execute arbitrary JavaScript code on the victim's behalf via malicious Jira API responses

CVE-2020-20746: vulinfo/vul1.md at master · grapefruitvul/vulinfo

A stack-based buffer overflow in the httpd server on Tenda AC9 V15.03.06.60_EN allows remote attackers to execute arbitrary code or cause a denial of service (DoS) via a crafted POST request to /goform/SetStaticRouteCfg.

How to clear your cache

Read our easy steps to clearing your cache on major web browsers: Chrome, Firefox, Safari, Edge, and Internet Explorer. Categories: How-tos Tags: cache chrome firefox IE Internet Explorer Microsoft Edge safari *( Read more... ( https://blog.malwarebytes.com/101/how-tos/2021/09/how-to-clear-your-cache/ ) )* The post How to clear your cache appeared first on Malwarebytes Labs.

CVE-2020-21594: heap-buffer-overflow in put_epel_hv_fallback when decoding file · Issue #233 · strukturag/libde265

libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback function, which can be exploited via a crafted a file.

CVE-2020-21606: heap-buffer-overflow in put_epel_16_fallback when decoding file · Issue #232 · strukturag/libde265

libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallback function, which can be exploited via a crafted a file.

CVE-2020-21597: heap-buffer-overflow in mc_chroma when decoding file · Issue #238 · strukturag/libde265

libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file.