#log4j

CVE-2023-6378: News

A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.

2 years ago

CVE

Open in Source

#sql #vulnerability #web #ios #mac #windows #google #amazon #linux #debian #dos #apache #js #git #java #oracle #rce #perl #aws #log4j #graalvm #auth #postgres #jira #maven #ssl

Discover Why Proactive Web Security Outsmarts Traditional Antivirus Solutions

In a rapidly evolving digital landscape, it's crucial to reevaluate how we secure web environments. Traditional antivirus-approach solutions have their merits, but they're reactive. A new report delves into the reasons for embracing proactive web security solutions, ensuring you stay ahead of emerging threats. To learn more, download the full report here. The New Paradigm If you’ve been relying

2 years ago

The Hacker News

Open in Source

#xss #vulnerability #web #js #git #intel #perl #log4j #zero_day #The Hacker News

Kinsing Crypto Malware Targets Linux Systems via Apache ActiveMQ Flaw

By Deeba Ahmed Patches for all affected versions of Apache ActiveMQ have been released, and clients are strongly advised to upgrade their systems. This is a post from HackRead.com Read the original post: Kinsing Crypto Malware Targets Linux Systems via Apache ActiveMQ Flaw

2 years ago

HackRead

Open in Source

#vulnerability #web #windows #google #microsoft #linux #apache #java #rce #perl #log4j #auth #zero_day #docker

Randstorm Exploit: Bitcoin Wallets Created b/w 2011-2015 Vulnerable to Hacking

Bitcoin wallets created between 2011 and 2015 are susceptible to a new kind of exploit called Randstorm that makes it possible to recover passwords and gain unauthorized access to a multitude of wallets spanning several blockchain platforms. "Randstorm() is a term we coined to describe a collection of bugs, design decisions, and API changes that, when brought in contact with each other, combine

2 years ago

The Hacker News

Open in Source

#vulnerability #web #apache #js #java #log4j #auth #The Hacker News

CVE-2023-47262: Product Advisories

In Abbott ID NOW before 7.1, settings can be modified via physical access to an internal serial port.

2 years ago

CVE

Open in Source

#vulnerability #windows #microsoft #apache #java #rce #log4j #auth

CVE-2023-43041: Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities in components.

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808.

2 years ago

CVE

Open in Source

#sql #vulnerability #linux #apache #log4j #auth #ibm #sap

Gentoo Linux Security Advisory 202310-16

Gentoo Linux Security Advisory 202310-16 - A vulnerability has been discovered in unifi where bundled log4j can facilitate a remote code execution Versions greater than or equal to 6.5.55 are affected.

2 years ago

Packet Storm

Open in Source

#vulnerability #web #mac #linux #rce #log4j

CVE-2023-33837: Security Bulletin: IBM Security Verify Governance is affected by multiple vulnerabilities

IBM Security Verify Governance 10.0 does not encrypt sensitive or critical information before storage or transmission. IBM X-Force ID: 256020.

2 years ago

CVE

Open in Source