安全研究 Safety research
苹果曝严重漏洞,可窃听用户与Siri对话https://www.freebuf.com/news/348108.html 一个隐藏SQLite数据库长达22年的漏洞https://www.freebuf.com/news/348001.html 提高警惕!有人在GitHub上利用虚假 PoC 漏洞钓鱼https://www.freebuf.com/news/347905.html OpenSSL即将修复继Heartbleed以来又一严重漏洞https://redqueen.tj-un.com/InfoDetails.html?id=10994bd2f7a34281aa9463d5eabdc805 VMware修复Cloud Foundation产品中的RCE漏洞https://redqueen.tj-un.com/InfoDetails.html?id=7cbda464876b41309381dbb292b1ba58
发布时间: 2022 - 10 - 28
针对Apache Commons Text4Shell漏洞的利用尝试正在进行中https://www.darkreading.com/attacks-breaches/exploit-attempts-are-under-way-for-apache-commons-text4shell-vulnerability Orca Security披露Azure SFX漏洞FabriXss细节https://www.anquanke.com/post/id/282019 Apple修复被利用的越界写入漏洞CVE-2022-42827https://redqueen.tj-un.com/InfoDetails.html?id=767989307c9b46debff41071dd3d4136 Fortinet发现利用VMware漏洞传播多个恶意软件的活动https://redqueen.tj-un.com/InfoDetails.html?id=56f36ed3282d4d5db8f59e11f79afb86 数千GitHub存储库提供带有恶意软件的假PoC漏洞https://www.bleepingcomputer.com/news/security/thousands-of-github-repositories-deliver-fake-poc-exploits-with-malware/
发布时间: 2022 - 10 - 25
Zoom修复适用于macOS的产品中的漏洞CVE-2022-28762https://redqueen.tj-un.com/InfoDetails.html?id=5beb7c7f0e8d4f7886300e1f23c165e5 Oracle发布2022年10月份安全更新修复366个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=0bc5be1b43d240fea648c4da48a3b1cb  HelpSystems带外更新修复Cobalt Strike中的RCE漏洞https://redqueen.tj-un.com/InfoDetails.html?id=1389b4ec34b349a68c215fa224bf2493 Xen安全漏洞 CVE-2022-33748https://redqueen.tj-un.com/IntelDetails.html?id=c05699814f584ba093edab7077d958ab Siemens Nucleus NET和Nucleus ReadyStart 资源管理错误漏洞 CVE-2022-38371https://redqueen.tj-un.com/IntelDetails.html?id=e8afffff0ad540d38b24252fb79e3d2c
发布时间: 2022 - 10 - 20
近900台服务器被黑客利用Zimbra零日漏洞入侵https://www.bleepingcomputer.com/news/security/almost-900-servers-hacked-using-zimbra-zero-day-flaw/ 高危!最新发现的西门子工业网络软件漏洞已影响多款产品https://www.sohu.com/a/592604688_257305 0patch比微软官方更早推出MotW零日漏洞补丁https://www.cnbeta.com/articles/tech/1328283.htm OTFCC_PROJECT OTFCC Vulnerability CVE-2022-35040https://redqueen.tj-un.com/IntelDetails.html?id=2af4261ede414a70ba095ac55dfafbe4 关键Fortinet身份验证绕过漏洞的POC已经发布https://thehackernews.com/2022/10/poc-exploit-released-for-critical.html
发布时间: 2022 - 10 - 18
近一年时间过去了,VMware的这一漏洞仍悬而未决https://www.freebuf.com/news/346632.html Fortinet证实了CVE-2022-40684身份验证绕过安全漏洞的野外利用https://www.cnbeta.com/articles/tech/1325827.htm 研发团队修复JavaScript沙箱vm2的漏洞CVE-2022-36067https://redqueen.tj-un.com/InfoDetails.html?id=ac26bdd51b074f83a1f2b45d60c3b882 Adobe 10月份周二补丁修复多个产品中的29个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=84b753dc03ef47458a363fb2aa27a2ed Lockbit团伙利用Exchange中的漏洞来安装恶意软件https://redqueen.tj-un.com/InfoDetails.html?id=b1d5a1f34fd54333a1426389b2d5affb
发布时间: 2022 - 10 - 13
CVE-2022-30331-TigerGraph 3.6.0 UDF功能漏洞分析https://www.freebuf.com/vuls/345066.html Fortinet修复其多个产品中的绕过漏洞CVE-2022-40684https://redqueen.tj-un.com/InfoDetails.html?id=406a66709b714dcb951ab46273a7f57b Windows 11 22H2更新出现bug并显示0x800700b7错误https://redqueen.tj-un.com/InfoDetails.html?id=0514a719898c48b4b7116c86fd618761 CVE-2022-34916 Apache Flume 远程代码执行漏洞分析https://www.freebuf.com/vuls/345286.html VERITAS NETBACKUP Vulnerability CVE-2022-42301https://redqueen.tj-un.com/IntelDetails.html?id=d21b5b265d124740b5558159802771e4
发布时间: 2022 - 10 - 08
Sophos防火墙远程命令执行0day漏洞已遭利用https://www.secrss.com/articles/47388 重要的WhatsApp漏洞可能让攻击者远程入侵设备https://thehackernews.com/2022/09/critical-whatsapp-bugs-could-have-let.html Stacked VLAN中的4个可导致DoS和MiTM攻击的漏洞https://redqueen.tj-un.com/InfoDetails.html?id=885a9a8c68094715b911936fed7c9ccf CMINDS CM_DOWNLOAD_MANAGER Vulnerability CVE-2022-3076https://redqueen.tj-un.com/IntelDetails.html?id=127f680212134d06b90a789b0191bab4 Google Chrome安全漏洞CVE-2022-3039https://redqueen.tj-un.com/IntelDetails.html?id=c297c4070ca7464a9bd7b00e02372a98
发布时间: 2022 - 09 - 30
ISC 修复了BIND DNS软件中的高严重性缺陷https://securityaffairs.co/wordpress/136164/security/bind-dns-software-flaws-2.html CVE-2022-22963 SpringCloud Function SpEL注入漏洞分析https://www.freebuf.com/vuls/344673.html Sophos修复已被利用的代码注入漏洞CVE-2022-3236https://redqueen.tj-un.com/InfoDetails.html?id=f6eb10e1eb4342d793848d5d6e268b6c APACHE PULSAR Vulnerability CVE-2022-24280https://redqueen.tj-un.com/IntelDetails.html?id=f033e601ee8f453db24e0b6c447f2b4d WORDFENCE WORDFENCE_SECURITY Vulnerability CVE-2022-3144https://redqueen.tj-un.com/IntelDetails.html?id=04bdecca8b614c21a4a62e090d4c2fb8
发布时间: 2022 - 09 - 27
研究人员披露了Oracle云基础设施中的严重漏洞,现已修复https://www.freebuf.com/news/345399.html Python 15年未修的漏洞可能影响35万余个项目,速查https://www.freebuf.com/news/345395.html Huawei HarmonyOS安全漏洞 CVE-2022-38992https://redqueen.tj-un.com/IntelDetails.html?id=83efad9f4da642fa98f2fbfc3f8cf1f0 Dataprobe配电单元中发现严重的RCE漏洞https://thehackernews.com/2022/09/critical-remote-hack-flaws-found-in.html CrushFTP跨站脚本漏洞 CVE-2021-44076https://redqueen.tj-un.com/IntelDetails.html?id=f8b1fc3d366d4be29403413354dcffc1
发布时间: 2022 - 09 - 23
CISA要求美国各机构尽快修复2010-2022年间发现的6个漏洞https://www.cnbeta.com/articles/tech/1317807.htm Huawei HarmonyOS安全漏洞 CVE-2022-38979https://redqueen.tj-un.com/IntelDetails.html?id=b230efa6267742a78c27437b93453783 VMware Tools本地提权漏洞CVE-2022-31676分析与复现https://www.freebuf.com/vuls/344427.html
发布时间: 2022 - 09 - 20
cURL曝长寿DOS漏洞:存在时间长达24年https://www.secrss.com/articles/46795 WordPress插件曝出零日漏洞,已被积极在野利用https://www.freebuf.com/news/344225.html WellinTech KingView日志文件解析缓冲区溢出漏洞:CVE-2012-4711分析https://www.freebuf.com/vuls/343200.html Apple修复iPhone和Mac中可能已被积极利用的漏洞https://redqueen.tj-un.com/InfoDetails.html?id=9fe305a19ff34d77840f152e8c7a0b6b CANTO CANTO Vulnerability CVE-2022-40305https://redqueen.tj-un.com/IntelDetails.html?id=c22318b6bb764e7fad6606646768ef11
发布时间: 2022 - 09 - 13
苹果零日漏洞利用市售800万欧元https://www.secrss.com/articles/46556 新发现的浏览器漏洞允许覆盖剪贴板内容 可能严重影响加密货币安全https://www.cnbeta.com/articles/tech/1312115.htm QNAP发布更新,修复被勒索软件Deadbolt利用的漏洞https://redqueen.tj-un.com/InfoDetails.html?id=15bd0e05f1f646e8a2588f7708a06e8c Chrome紧急更新修复已被利用的漏洞CVE-2022-3075https://redqueen.tj-un.com/InfoDetails.html?id=e07b7d09306647dfb6034a0d0d445537 WordPress plugin MP3 jPlayer跨站请求伪造漏洞 CVE-2022-36373https://redqueen.tj-un.com/IntelDetails.html?id=895181cac34e420788d8a00dab19aed4
发布时间: 2022 - 09 - 06
TikTok曝高危漏洞允许一键式帐户劫持,回应称已修复https://www.freebuf.com/articles/343500.html 最高超过20万,谷歌发布开源漏洞奖励计划https://www.freebuf.com/news/343478.html Nelnet服务漏洞暴露了250万个学生贷款账户的数据https://www.bleepingcomputer.com/news/security/nelnet-servicing-breach-exposes-data-of-25m-student-loan-accounts/ Google发布Chrome的安全更新,总计修复24个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=9562055846f54a22b32974038a9556c1 libapreq2授权问题漏洞CVE-2022-22728https://redqueen.tj-un.com/IntelDetails.html?id=faea2c4a7b1f4f478015bc294b0ed84f
发布时间: 2022 - 09 - 02
Atlassian Bitbucket服务器和数据中心出现漏洞https://www.freebuf.com/news/343151.html 印度阿卡萨航空公司承认存在安全漏洞 导致34533条用户信息暴露https://www.cnbeta.com/articles/tech/1309711.htm Red Hat JBoss A-MQ跨站脚本漏洞CVE-2022-35278https://redqueen.tj-un.com/IntelDetails.html?id=3feed9f054714cc992d39c2d49efce46 BlueCMS SQL注入漏洞 CVE-2022-37111https://redqueen.tj-un.com/IntelDetails.html?id=cd2acadd76ce414dbef98b98f1122978 Vim资源管理错误漏洞CVE-2022-2946https://redqueen.tj-un.com/IntelDetails.html?id=e7c92321cc5d450881952b81f264290a
发布时间: 2022 - 08 - 29
推特前安全主管控诉存在“令人震惊”的安全漏洞https://www.freebuf.com/articles/342801.html VMware修复了VMware Tools中的权限提升问题https://securityaffairs.co/wordpress/134791/security/vmware-vmware-tools-flaw.html GitLab修复了CE、EE版本中一个远程代码执行漏洞https://www.freebuf.com/news/342725.html 黑客利用零日漏洞窃取General Bytes ATM机上的加密货币https://www.freebuf.com/news/342610.html 因用户未更新固件,超八万台摄像机可能被利用https://www.freebuf.com/news/342613.html
发布时间: 2022 - 08 - 25
苹果曝严重安全漏洞,喜提热搜第一https://www.freebuf.com/news/342532.html CVE-2022-26135 Atlassian Jira Mobile Plugin SSRF漏洞https://www.freebuf.com/vuls/341637.html Microsoft披露ChromeOS组件中内存损坏漏洞的细节https://redqueen.tj-un.com/InfoDetails.html?id=c9ce0c4334334857be3ab0c398d07530 Vim 安全漏洞 CVE-2022-2845https://redqueen.tj-un.com/IntelDetails.html?id=6bcc86321578489fbec7d3eea8d560d7 Laravel 代码问题漏洞 CVE-2022-2870https://redqueen.tj-un.com/IntelDetails.html?id=869377788c0f4c19bf4cc54335cbe6e1
发布时间: 2022 - 08 - 22
Realtek爆出关键漏洞,影响多款网络设备https://www.freebuf.com/news/342152.html macOS上的漏洞可能让攻击者访问Mac上的所有文件https://www.freebuf.com/articles/342024.html 新的MailChimp漏洞暴露了DigitalOcean客户的电子邮件地址https://www.bleepingcomputer.com/news/security/new-mailchimp-breach-exposed-digitalocean-customer-email-addresses/ 研究人员在Intel、AMD处理器中发现了ÆPIC和SQUIP漏洞https://thehackernews.com/2022/08/pic-and-squip-vulnerabilities-found-in.html 研究人员披露RTLS中可导致MitM等攻击的漏洞的详情https://redqueen.tj-un.com/InfoDetails.html?id=725d2e48485d4d1888b98269bab320e3
发布时间: 2022 - 08 - 18
Electron被曝远程代码执行漏洞,Discord、Notion、Teams受影响https://www.51cto.com/article/716358.html 利用macOS端Zoom安装器漏洞 黑客可以接管你的Machttps://www.cnbeta.com/articles/tech/1304009.htm  Palo Alto 漏洞用于DDoS攻击,目前还没有修复https://www.theregister.com/2022/08/12/palo_alto_bug/ Google Android 安全漏洞 CVE-2022-20347https://redqueen.tj-un.com/IntelDetails.html?id=7957b8c76e2a4430b2ec6efbba5c2b3c Redis未授权漏洞蜜罐模拟与捕获分析https://www.freebuf.com/vuls/341309.html
发布时间: 2022 - 08 - 15
CISA警告Windows和UnRAR漏洞在野被利用https://www.freebuf.com/articles/341495.html TAC-040利用Confluence中漏洞安装Ljl Backdoorhttps://redqueen.tj-un.com/InfoDetails.html?id=86a12b2502f849a8a568dd0b8b5a2c8a UnRAR中路径遍历漏洞CVE-2022-30333已被积极利用https://redqueen.tj-un.com/InfoDetails.html?id=19f90afc615944cdb0ed11836b770fb4 Moodle其他漏洞CVE-2020-1754https://redqueen.tj-un.com/IntelDetails.html?id=e531bfa88a4544d0b16b702ec38cdf01 Artica Pandora FMS跨站脚本漏洞CVE-2021-46679https://redqueen.tj-un.com/IntelDetails.html?id=67fd9c30a52c4159bb698a83e1f03288
发布时间: 2022 - 08 - 11
推特承认,零日漏洞致540万用户数据被盗https://www.freebuf.com/news/341258.html DrayTek爆出RCE漏洞,影响旗下29个型号的路由器https://www.freebuf.com/news/341124.html CVE-2022-22980 Spring Data MongoDB SpEL表达式注入漏洞分析https://www.freebuf.com/vuls/338941.html 缓冲区溢出漏洞那些事:C -gets函数https://www.freebuf.com/news/340045.html Slack称已修复可泄露密码的漏洞并为部分用户重置密码https://redqueen.tj-un.com/InfoDetails.html?id=5e5b0d26dc23474587698b084e9736a1
发布时间: 2022 - 08 - 08
319页次10/16首页上一页...  567891011121314...下一页尾页
友情连接:
免费服务热线 ree service hotline 400-613-1868 手机端
法律声明 Copyright  西安交大捷普网络科技有限公司  陕ICP备18022218号-1

陕公网安备 61019002000857号

犀牛云提供云计算服务