Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor.

Home Maxima Max Pro Power

Rs. 12,995.00 Rs. 2,999.00

283 customers are viewing this product

*   Description
*   Customer Reviews
*   Shipping & Returns

Maxima Power 1.43" Super AMOLED Bluetooth Calling Smart Watch, 466x466dpi Ultra Resolution, 60hz Refresh, Metallic Build, Hindi UI, AI Voice Assistant, BT 5.2 for Seamless Connection.

Experience the pinnacle of technology with the Maxima Max Pro Power Amoled Smartwatch. Its advanced features include Bluetooth calling, enabling you to make and receive calls directly from your wrist. The Super AMOLED Display with a resolution of 466x466 pixels delivers stunning visuals with vibrant colors. With Hindi UI support, navigating through the watch's interface becomes effortless. Stay seamlessly connected with BT5.2 technology, ensuring stable connections with your devices. Choose from over 100 sports modes to track your fitness activities accurately. Customize your watch face from a collection of over 100 options to match your style. Monitor your heart rate, sleep patterns, and blood oxygen levels with precision. With its premium metallic build, this smartwatch is a perfect blend of elegance and durability, making it a must-have accessory for the modern individual.

*   **Made In India**: Proudly manufactured in India, ensuring high-quality craftsmanship and supporting local industries.
*   **Bluetooth calling**: Stay connected on the go by making and receiving calls directly from your smartwatch.
*   **Super AMOLED Display**: Immerse yourself in stunning visuals and vibrant colors on the Super AMOLED display
*   **466x466px dpi resolution**: Enjoy sharp and detailed images with the high-resolution display with 1000 Nits Brightness
*   **Hindi UI Support**: Navigate the watch's interface effortlessly with user-friendly support for the Hindi language.
*   **BT5.2 for Seamless Connection**: Experience stable and reliable connections with Bluetooth 5.2 technology.
*   **100+ Sports Mode**: Track and monitor over 100 different sports activities to stay motivated and reach your fitness goals
*   **100+ Watch Faces**: Personalize your smartwatch's look with a wide range of watch face options to suit your style.
*   **Heart Rate Monitor**: Keep track of your heart rate to optimize your workouts and monitor your overall cardiovascular health.
*   **Sleep Monitor**: Gain insights into your sleep patterns, including deep sleep and REM cycles, to improve your sleep quality.
*   **SpO2 Monitor**: Measure your blood oxygen saturation levels to ensure optimal respiratory health during physical activities.
*   **Premium Metallic Build**: Designed with a premium metallic construction, the smartwatch combines style and durability for a sophisticated and long-lasting design.

**Specification**

Model

Max Pro Power

Dimensions

46.5 x 46.5 X 10.65 mm

Strap Variant

Silicone, SS Metal Chain

Strap Length

90 x 120 mm

Weight

30gm (Watch Head) 46.8gm (Watch Head + Strap)

Water Resistant

IP68 Water Resistant

Body Material

Premium Metal

Display

Ultra Bright Screen Topping 1000 Nits

Touch Screen

1.43" Super Amoled Precision Retina Display

Bluetooth

5.2

Charging Time

Less than 2 hrs.

Charging Method

Magnetic Pin Charger

Battery Life

Upto 3 Days with calling & Upto 7 Days without Calling Function

Supported Devices

Android 8.0 / IOS 9.0 and above

In the box

Smartwatch, Charger, Service Manual/ Guarantee card

Warranty

1 year. Please make sure to activate your warranty

Supported App

FitCloud Pro

Strap Colours

Jet Black SS Chain, Space Black, Rose Gold Black, Blue

  
  

**Shipping**

Shipping is free across India on all our products.

**7 DAYS RETURN/ REPLACEMENT/ REFUND POLICY**

P A Time Industries Unit-II offers 7 days replacement/return/refund guarantee for all products sold on smart.maximawatches.com. Customers may notify us of any damage or defect within 7 days from the date of delivery. P A Time Industries Unit-II will replace the defective product with a brand new product at no extra cost. P A Time Industries Unit-II will try to replace the specific product ordered. However, the company reserves the right to offer an alternate product in case the product is out of stock/ production. The 7 days return policy is valid only in cases of manufacturing defects and transport damages and is invalid in cases of damages due to normal wear & tear and negligence on part of the customer. Refunds are issued in the following two ways Product replacement - In case of damaged or incorrect items P A Time Industries Unit-II would replace it with a new one, upon receipt of the returned item In case you do not wish to receive the replacement, you may specify that in your communication with our customer service by phone or e-mail. You would receive maxima store credit of the equivalent amount. We do not provide cash refunds.

CVE-2023-46916: Maxima Max Pro Power

strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.

CVE-2023-41913: Releases · strongswan/strongswan

Cisco Talos has disclosed 10 vulnerabilities over the past two weeks, including nine that exist in a popular online PDF reader that offers a browser plugin.

Wednesday, December 6, 2023 13:33

Cisco Talos has disclosed 10 vulnerabilities over the past two weeks, including nine that exist in a popular online PDF reader that offers a browser plugin. 

Attackers could exploit these vulnerabilities in the Foxit PDF Reader to carry out a variety of malicious actions, but most notably could gain the ability to execute arbitrary code on the targeted machine. Foxit aims to have feature parity with Adobe Acrobat Reader, the most popular PDF-reading software currently on the market. The company offers paid versions of its software for a variety of users, including individuals and enterprises. There are also browser plugins of Foxit that run in a variety of web browsers, including Google Chrome and Mozilla Firefox. 

Talos’ Vulnerability Research team also found an integer overflow vulnerability in the GPSd daemon, which is triggered if an attacker sends a specially crafted packet, causing the daemon to crash. 

For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org, and our latest Vulnerability Advisories are always posted on Talos Intelligence’s website.  

**Multiple vulnerabilities in Foxit PDF Reader **

_Discovered by Kamlapati Choubey._ 

Foxit PDF Reader contains multiple vulnerabilities that could lead to remote code execution if exploited correctly.  

TALOS-2023-1837 (CVE-2023-32616) and TALOS-2023-1839 (CVE-2023-38573) can be exploited if an attacker embeds malicious JavaScript into a PDF, and the targeted user opens that PDF in Foxit. These vulnerabilities can trigger the use of a previously freed object, which can lead to memory corruption and arbitrary code execution.  

TALOS-2023-1838 (CVE-2023-41257) works in the same way, but in this case, it is caused by a type confusion vulnerability.  

Three other vulnerabilities could allow an attacker to create arbitrary HTA files in the context application, and eventually gain the ability to execute arbitrary code on the targeted machine. TALOS-2023-1832 (CVE-2023-39542), TALOS-2023-1833 (CVE-2023-40194) and TALOS-2023-1834 (CVE-2023-35985) are all triggered if the targeted user opens a specially crafted file in the Foxit software or browser plugin. 

**GPSd NTRIP Stream Parsing access violation vulnerability **

_Discovered by Dimitrios Tatsis._ 

An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPS daemon, which is used to collect and display GPS information in other software. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger TALOS-2023-1860 (CVE-2023-43628). 

According to GPSd’s website, this service daemon powers the map service on Android mobile devices and is “ubiquitous in drones, robot submarines, and driverless cars.” 

_Discovered by Claudio Bozzato and Francesco Benvenuto._ 

Talos researchers recently found multiple data integrity vulnerabilities in Buildroot, a tool that automates builds of Linux environments for embedded systems. 

An adversary could carry out a man-in-the-middle attack to exploit TALOS-2023-1845 (CVE-2023-43608) and TALOS-2023-1844 (CVE-2023-45842, CVE-2023-45839, CVE-2023-45838, CVE-2023-45840 and CVE-2023-45841) to execute arbitrary code in the builder. 

As a direct consequence, an attacker could then also tamper with any file generated for Buildroot’s targets and hosts. 

**Malformed Excel file could lead to arbitrary code execution in WPS Office **

_Discovered by Marcin “Icewall” Noga._ 

An uninitialized pointer use vulnerability (TALOS-2023-1748/CVE-2023-31275) exists in the functionality of WPS Office, a suite of software for word and data processing, that handles Data elements in an Excel file.  

A specially crafted malformed Excel file can lead to remote code execution. 

WPS Office, previously known as a Kingsoft Office, is a software suite for Microsoft Windows, macOS, Linux, iOS, Android, and HarmonyOS developed by Chinese software developer Kingsoft. It is installed by default on Amazon Fire tablet devices. 

Talos disclosed this vulnerability in November despite no official fix or patch from Kingsoft after the company did not respond to our notification attempts and failed the 90-day deadline as outlined in Cisco’s third-party vendor vulnerability disclosure policy.

Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader

Governments can access records related to push notifications from mobile apps by requesting that data from Apple and Google, according to details in court records and a US senator.

If you have push notifications turned on for sensitive apps, you may want to reconsider your settings.

The United States government and foreign law enforcement can demand Apple and Google share metadata associated with push notifications from apps on iOS and Android, according to a US senator and court records reviewed by WIRED. These notifications can reveal which apps a person uses, along with other information that may be pertinent to law enforcement investigations.

US Senator Ron Wyden, an Oregon Democrat, highlighted the government surveillance technique in a letter sent to the US Department of Justice (DOJ) today. Wyden is specifically asking the DOJ to allow Apple and Google to discuss government requests for push notification records with their users, which Wyden says the US government has required them to keep secret thus far.

“In the spring of 2022, my office received a tip that government agencies in foreign countries were demanding smartphone ‘push’ notification records from Google and Apple,” Wyden wrote in the letter, which was first reported by Reuters. “My staff have been investigating this tip for the past year, which included contacting Apple and Google. In response to that query, the companies told my staff that information about this practice is restricted from public release by the government.”

App developers deliver push notifications using Apple’s Push Notification Service on iOS or Google’s Firebase Cloud Messaging on Android. Each user of an app is assigned a “push token,” which is transferred between the app and the mobile operating system’s push notification service. Push tokens are not permanently assigned to a single user, and new tokens may be generated when a person reinstalls an app or switches to a new device.

To identify a person of interest and whom they may have been communicating with, law enforcement must first go to an app developer to obtain the relevant push token and then bring it to the operating system maker—Apple or Google—and request information on which account the token is associated with. This puts the tech giants in “a unique position to facilitate government surveillance of how users are using particular apps,” Wyden writes.

According to Wyden, the records that governments can obtain from Apple and Google include metadata that reveals which apps a person has used, when they’ve received notifications, and the phone associated with a particular Google or Apple account. The content of push notifications is not included in this information, but, for at least some apps, law enforcement could obtain information about the content of specific pushes through additional requests based on the information from the push tokens.

While Wyden’s letter says that governments outside the US have requested people’s push notification records, the Federal Bureau of Investigation (FBI) has done so as well. A February 2021 search warrant application submitted by an FBI agent to the US District Court in Washington, DC, requested details for two accounts controlled by Meta (then Facebook), specifically citing a request for push notification tokens. The search warrant request related to an investigation into a person accused of taking part in the January 6, 2021, attack on the US Capitol.

Meta, which owns Facebook, WhatsApp, and Instagram, did not immediately respond to WIRED’s request to comment. A spokesperson for Signal, the popular encrypted messaging app, also did not respond. The DOJ declined to comment.

Although Wyden is asking the DOJ to allow Apple and Google to discuss government requests for push notification records, the senator’s letter appears to have enabled them to do just that.

An Apple spokesperson tells WIRED that the company has updated its Law Enforcement Guidelines in its transparency report to reflect government requests for push notification records. The company will also begin to detail these requests in its next transparency report. Apple's updated rules for police requests say push notification records “may be obtained with a subpoena or greater legal process.”

“Apple is committed to transparency and we have long been a supporter of efforts to ensure that providers are able to disclose as much information as possible to their users,” Apple says in a statement. “In this case, the federal government prohibited us from sharing any information and now that this method has become public we are updating our transparency reporting to detail these kinds of requests.”

Google confirmed to WIRED that it receives requests for push notification records, but the company says it already includes these types of requests in its transparency reports. The company says requests from US-based law enforcement for push notification records require court orders with judicial approval.

“We were the first major company to publish a public transparency report sharing the number and types of government requests for user data we receive, including the requests referred to by Senator Wyden,” a Google spokesperson tells WIRED. “We share the senator’s commitment to keeping users informed about these requests.”

A WIRED review of Google’s most recent transparency report for the period between December 2019 and December 2022 found that it does not specifically break out government requests for push notification records, and Google confirmed that it aggregates this data in its transparency report.

Google’s transparency report shows that the US government requested Google Cloud Platform data from enterprise customers 175 times during the period, and of those, used a search warrant 13 times. It is unclear whether any of those requests for user data included push notification records—details that may, following Wyden’s letter, be revealed in the future.

_Additional reporting by William Turton and Dhruv Mehrotra._

_Updated at 1:30 pm ET, December 6, 2023, to note that the DOJ has declined to comment on Wyden's letter and to add additional details about Apple's updated rules for law enforcement regarding requests for push notification records._

_Updated at 3:50 pm ET, December 6, 2023, to add details about Google's legal requirement for law enforcement requests for push notification records._

Police Can Spy on Your iOS and Android Push Notifications

By Deeba Ahmed
CISA Warns of Critical Adobe ColdFusion Vulnerability Actively Exploited by Threat Actors.
This is a post from HackRead.com Read the original post: Adobe ColdFusion Flaw Used by Hackers to Access US Govt Servers

Authorities urge Adobe ColdFusion customers to promptly install patches and update their systems.

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a Cybersecurity Advisory (CSA) alerting organizations to the exploitation of a critical vulnerability in Adobe ColdFusion by unidentified threat actors.

The vulnerability, **CVE-2023-26360**, affects Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier), as well as older ColdFusion installations that Adobe no longer supports.

Exploitation of CVE-2023-26360 allows threat actors to execute arbitrary code on affected systems, posing a significant security risk. The vulnerability was added to CISA’s known exploited vulnerability (KEV) catalogue right after its discovery, and an April 5 deadline was given to agencies to fix the issue. 

Adobe ColdFusion is a widely used software suite for web application development. Hackread has been reporting this vulnerability ever since it was **discovered** in March. We reported in August 2023 that this critical remote code execution (RCE) flaw, which impacts both Windows and macOS platforms, allows attackers to seize control of affected systems, making it a high-severity cybersecurity risk. Adobe **released** security patches to address the following vulnerabilities:

*   APSB23-40
*   APSB23-41
*   APSB23-47

However, FortiGuard Labs observed continued exploitation attempts at that time, indicating that some users had not yet applied the patches.

Now, the same vulnerability has been exploited by unidentified hackers to gain access to two systems within a Federal Civilian Executive Branch (**FCEB**) agency. Reportedly, the FCEB was running outdated versions, including ColdFusion, which made it vulnerable to the exploit. The hackers were able to gain initial access to two public-facing web servers within the agency’s pre-production environment.

At least two public-facing servers within a Federal Civilian Executive Branch (FCEB) agency were **targeted** with this vulnerability between June and July 2023. Here are the details of the attacks:

**June 2:** Initial access, reconnaissance activities (local/domain admin information, network configurations, user details), and deployment of a remote access trojan (**RAT**). Attempts to exfiltrate data, obtain credentials, download data from C2 infrastructure, and change policies were unsuccessful.

**June 26:** Attackers connected through a malicious IP address, exploited the vulnerability, and analysed running processes. They navigated the filesystem, deleted logs, and executed malicious code designed for ColdFusion versions 9 and below (targeting usernames, passwords, and URLs).

The code could enable future attacks and upload additional files from an unknown source. Password decryption was not possible due to the agency’s newer ColdFusion version. Attempts to conceal the web shell also failed.

While the hackers could insert malware and launch a reconnaissance campaign, there is no evidence of data exfiltration or lateral movement. The agency removed the compromised servers from the network within 24 hours of receiving the alert. CISA is yet to clarify whether the two attacks originated from the same operators.

****_RELATED ARTICLES_****

1.  **68% of US Websites Exposed to Bot Attacks**
2.  **Fake Lockdown Mode Exposes iOS Users to Malware Attacks**
3.  **Cyberattack Defaces Israeli-Made Equipment at US Water Agency**
4.  **Hackers Leak Thousands of Idaho National Lab Employees’ PII Data**
5.  **USPS Delivery Phishing Scam Exploits SaaS Providers to Steal Data**

Adobe ColdFusion Flaw Used by Hackers to Access US Govt Servers


AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability. 







%PDF-1.7 %���� 1 0 obj <>/Metadata 150 0 R/ViewerPreferences 151 0 R>> endobj 2 0 obj <> endobj 3 0 obj <>/ExtGState<>/XObject<>/ProcSet\[/PDF/Text/ImageB/ImageC/ImageI\] >>/Annots\[ 9 0 R 12 0 R 31 0 R 32 0 R\] /MediaBox\[ 0 0 612 792\] /Contents 4 0 R/Group<>/Tabs/S/StructParents 0>> endobj 4 0 obj <> stream x��\]Yo�H�~���Ǫ��b�d6��Ѣ��d��P�K�$�Z\*y������L�f�4I�F��#�\_dDd\\L���W����\*������jv���K�Ó�j�|�������᯳���l�X>^�~^᥋�r5>:JN�N�?���4����I�X�͝L���{�S�wr��wx!�:�\\��� h�%"Q�O�\\?@��\\�������Y���������y�������Ρ�����j�\*��L�' ň�2 �/Ӄ|?z��N��Of� \]�5��� �z~���lEw�pˎH��&Uz�L��|W} ���\]&H��|j&7�x��X}��Ir:B�| Q� ����L�H3�E��6�՛KKJ�J��x1$���{������V��k��j �5g�R�oKī���H ��\*�͠�b�Ho@\\���xs+ө�ĵe��&6)D���,�@�&��?��L�6B��d�MW�U� ���\*eZ�����;M�ë��#��w��gIv����.��>^M��\*�Df�\*ot��"�����$QD\]�C�2�(v����a\]���\\�<�Ҡ:�(e�j~��� \[�-9���+�,^�x���H4�L;��#�Z��S�#PL�r��a��Y��\`�9L4ۇ5��< B�)��F�s������ QdpP�����)80gp\`���Ƨ�Q/Y�H,��I�ԈX\` \]��x ��A�H1,3pE�M^.<���V�t��1��TfR�~/�Amx��#�&3�E�anK�V�H<�$\\�xp�����-Y�y��Ё:3�5��y�Y�rL��I�������Yq�o4zL�R�\`Q��:� c�{b���5,��V2X\]l�/�w�Ljab\_D���3�JJ��a,z��q���S-8ԃ1��4c� .�D�7�� �V����X �C6-�\`<�\\Q�GTc��lD���G9����S�8�� @͖�,cG�@�2@�\\��;ߍ|E��:�i�A!&�4�6c�M>o�}�+ �����"K�� ES\*2�p#(\`4k4��r�YO�R���%;9z��Z�T�@����U���\*i�!�Īx@�� F(�@S��\\������ �Xg�BLN����˩��ߏWYYYCV&�C�T�%�K�l:11�X�(5D�ّ����T�x�͜�09f�@��ق�X�G�����on�9&/x��{�ͭ�b/��>=��r�w�w�a�t��--��>t��4b��וY㙀m�d�{\*�v��B�Z��e\[�O.ѩ��0 P���E?�P��RE�axf�Y=Q�f�a�3���ѐ���)1L{I�f^n���Dq::��d�u�

CVE-2023-39539

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

HUAWEI is releasing monthly security updates for flagship models. This security update includes HUAWEI and third-party library patches:

This security update includes the following third-party library patches:

This security update includes the CVE announced in the November 2023 Android security bulletin:

Critical: none

High: CVE-2023-40104, CVE-2023-40111, CVE-2023-40112, CVE-2023-40110, CVE-2023-40114, CVE-2023-40105, CVE-2023-40106, CVE-2023-40109, CVE-2023-40115, CVE-2023-40100, CVE-2023-33031, CVE-2023-33055, CVE-2023-33059

Medium: CVE-2023-28572, CVE-2023-28553

Low: none

Already included in previous updates: CVE-2022-29824, CVE-2023-21253, CVE-2021-44828, CVE-2022-28348, CVE-2023-33200, CVE-2023-4211, CVE-2023-21237, CVE-2022-20264, CVE-2022-27404, CVE-2023-21295, CVE-2023-21308, CVE-2023-21311, CVE-2023-21319, CVE-2023-21320, CVE-2023-21326, CVE-2023-21331, CVE-2023-21344, CVE-2023-21346, CVE-2023-21348, CVE-2023-21349, CVE-2023-21355, CVE-2023-21369, CVE-2023-21372, CVE-2023-21374, CVE-2023-21388

※ For more information on security patches, please refer to the Android security bulletins (https://source.android.com/security/bulletin).

This security update includes the following HUAWEI patches:

CVE-2023-44099: Vulnerability of data verification errors in the kernel module

Severity: Medium

Affected versions: EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may cause WLAN interruption.

CVE-2023-44113: Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module

Severity: Medium

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-46773: Permission management vulnerability in the PMS module

Severity: High

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may cause privilege escalation.

CVE-2023-49239: Unauthorized access vulnerability in the card management module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49240: Unauthorized access vulnerability in the launcher module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49241: API permission control vulnerability in the network management module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49242: Free broadcast vulnerability in the running management module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49243: Vulnerability of unauthorized access to email attachments in the email module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49244: Permission management vulnerability in the multi-user module

Severity: Medium

Affected versions: EMUI 13.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49245: Unauthorized access vulnerability in the HUAWEI Share module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49246: Unauthorized access vulnerability in the card management module

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49247: Permission verification vulnerability in distributed scenarios

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-49248: Vulnerability of unauthorized file access in the Settings app

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may cause unauthorized file access.

CVE-2023-6273: Permission management vulnerability in the module for disabling Sound Booster

Severity: Medium

Affected versions: EMUI 13.0.0, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2023-6273: December

An issue exists in SoftIron HyperCloud where compute nodes may come online immediately without following the correct initialization process.  In this instance, workloads may be scheduled on these nodes and deploy to a failed or erroneous state, which impacts the availability of these workloads that may be deployed during this time window.

This issue impacts HyperCloud versions from 2.0.0 to before 2.0.3.



CVE-2023-45085: Releases - HyperCloud Docs


Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information tampering, code execution, denial of service.



**Impact**

High

**Details**

Proprietary Code CVEs

Description

CVSS Base Score

CVSS Vector String

CVE-2023-44297

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial of service.

7.1

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L 

CVE-2023-44298

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information tampering, code execution, denial of service.

3.6

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L 

Proprietary Code CVEs

Description

CVSS Base Score

CVSS Vector String

CVE-2023-44297

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial of service.

7.1

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L 

CVE-2023-44298

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information tampering, code execution, denial of service.

3.6

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L 

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

**Affected Products and Remediation**

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.  

**Workarounds and Mitigations**

None

**Revision History**

Revision

Date

Description

1.0

2023-12-04

Initial release

**Related Information**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

PowerEdge C6620, PowerEdge HS5610, PowerEdge HS5620, PowerEdge MX760c, PowerEdge R660, PowerEdge R660xs, PowerEdge R760, PowerEdge R760XA, PowerEdge R760xd2, PowerEdge R760xs, PowerEdge R860, PowerEdge R960, PowerEdge T560

CVE-2023-44298: DSA-2023-429: Security Update for Dell 16G PowerEdge Server BIOS for a Debug Code Security Vulnerability

By Waqas
iOS Security Flaw: Fake Lockdown Mode Can Be Used to Trick Users, Leaving Them Exposed.
This is a post from HackRead.com Read the original post: Fake Lockdown Mode Exposes iOS Users to Malware Attacks

It turns out that visually mimicking this Fake Lockdown Mode without incorporating any of the original mode’s security features is possible.

Cybersecurity researchers at Jamf Threat Labs have discovered a new technique that allows malware to bypass **Lockdown Mode** on iOS devices. For your information, Lockdown Mode is a security feature introduced by Apple in iOS 16 to limit certain features/functions on an iOS device so that compromising the device becomes difficult for attackers.

Researchers found that the mode’s primary control is through user-space components, and it isn’t integrated deeply into the iOS kernel. This flaw offers threat actors an opportunity for malware to bypass the Lockdown Mode’s restrictions by altering the user’s default database or using method hooking techniques.

Jamf Threat Labs’ researchers **noted** that visually mimicking this Fake Lockdown Mode without providing any of the original mode’s security features is possible. It is worth noting that successful implementation of this technique is possible if the device is already compromised.

What happens is that when a user activates Lockdown Mode through the Settings app, the method is triggered, which initiates a sequence of actions, including disabling shared albums, link previews, developer mode, and enabling USB restricted mode. Additionally, it sets the LDMGlobalEnabled key in the user’s default database to “YES,” indicating that Lockdown Mode is active.

Simply put, on an already infiltrated device, a hacker can cause Lockdown Mode to be “bypassed” when the user triggers its activation. So, a user would think their device is in Lockdown Mode, but it is not and will remain vulnerable to attacks.

In their demo video, researchers created a scenario where malware intercepts Lockdown Mode activation, and instead of triggering the expected sequence, it creates a file titled “/fakelockdownmode\_on.”

Then, it initiates a user space reboot and tricks the system into believing that the Lockdown Mode is active. The researchers could maintain control over Lockdown Mode by manipulating the device’s reboot process. The malware could continue to run and monitor the user’s activity, even if they had taken steps to safeguard their device.

The researchers also manipulated Lockdown Mode in Safari, one of the most commonly used applications on iOS devices. By hooking into Safari’s code, they forced the system to think that Lockdown Mode was always enabled, even when it wasn’t.

Researchers also showed how to activate Lockdown Mode in Settings and disable it without the user’s knowledge. They could view PDF files in Safari, which isn’t allowed when Lockdown Mode is truly enabled.

Lockdown Mode is a practical feature in certain situations, such as the **BLASTPASS** zero-click exploit identified in September 2023. However, this finding reveals that it isn’t foolproof, and it is possible to manipulate it to bypass security measures on compromised devices.

Apple **addressed** the vulnerability in iOS 17 by elevating Lockdown Mode to kernel level. Still, researchers are warning users to remain cautious and take steps to protect their devices. This includes using strong passwords and keeping devices updated with the latest security patches.

****_RELATED ARTICLES_****

1.  **Apple Safari Safest, Google Chrome Riskiest Browser of 2022**
2.  **Update NOW! Pegasus Spyware Exploiting iPhones on Latest iOS**
3.  **Apple issues iPhone software update after fake police ransomware scam**

Tag

#ios