A week in security (July 22 – July 28)
A list of topics we covered in the week of July 22 to July 28 of 2024
A list of topics we covered in the week of July 22 to July 28 of 2024
A vulnerability was found in Linux Kernel up to 6.6.42/6.9.11/6.10.1. It has been classified as problematic. This affects an unknown part of the component ntfs3. The manipulation leads to out-of-bounds read.
This vulnerability is uniquely identified a…
A vulnerability was found in Linux Kernel up to 5.15.163/6.1.101/6.6.42/6.9.11/6.10.1 and classified as problematic. Affected by this issue is some unknown functionality of the component ntfs3. The manipulation leads to out-of-bounds read.
This vulner…
A vulnerability has been found in Linux Kernel up to 6.10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component jfs. The manipulation leads to Privilege Escalation.
This vulnerability is known as …
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.10. Affected is the function ocfs2_xattr_find_entry. The manipulation leads to out-of-bounds read.
This vulnerability is traded as CVE-2024-41016. The attack needs…
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.10.1. This issue affects the function ocfs2_check_dir_entry. The manipulation leads to memory corruption.
The identification of this vulnerability is CVE-2024-41…
A vulnerability classified as problematic was found in Linux Kernel up to 6.10. This vulnerability affects the function xfs_dir2_data_unused. The manipulation leads to out-of-bounds read.
This vulnerability was named CVE-2024-41013. The attack can onl…
A vulnerability classified as problematic has been found in Linux Kernel up to 6.10. This affects the function xlog_recover_process_data of the component xfs. The manipulation leads to out-of-bounds read.
This vulnerability is uniquely identified as C…
A vulnerability was found in Ivanti Endpoint Manager 2024. It has been rated as critical. Affected by this issue is some unknown functionality in the library MBSDKService.dll. The manipulation leads to sql injection.
This vulnerability is handled as C…
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel a Distribution-as-a-Service (DaaS) that propagates a variety of information-stealing malware and netting them $100,000 in illicit profits over the past…