安全研究 Safety research
搜狗输入法曝加密系统漏洞(已修复),黑客可窃取用户输入的内容https://www.freebuf.com/news/374555.html EoL-Zyxel路由器五年前的漏洞仍在被利用https://www.freebuf.com/news/374532.html 为打击漏洞利用,谷歌将每周更新Chrome安全补丁https://www.freebuf.com/news/374385.html 英特尔处理器被曝出“Downfall”漏洞:可窃取加密密钥https://www.freebuf.com/news/374376.html 微软8月份安全更新修复两个被利用漏洞在内的87个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=06caaf0e58604db78408d52075027a68
发布时间: 2023 - 08 - 11
抓紧修复!2022年最常被利用漏洞清单发布https://www.secrss.com/articles/57421 研究人员发现PaperCut软件中新的高严重性漏洞https://thehackernews.com/2023/08/researchers-uncover-new-high-severity.html PaperCut修复NG/MF打印管理软件漏洞CVE-2023-39143https://redqueen.tj-un.com/InfoDetails.html?id=44241af3de2c4526b7d6bec06b0f28f6 LIFERAYMultipleproductVulnerabilityCVE-2023-3426https://redqueen.tj-un.com/IntelDetails.html?id=bbefe10e9c094b20ac1b4de1cb30d4b3
发布时间: 2023 - 08 - 08
NSA、FBI、CISA联合发布:2022最容易被利用的漏洞TOP12https://www.freebuf.com/news/373882.html 黑客利用Facebook漏洞,发起网络钓鱼攻击https://www.freebuf.com/news/373761.html 黑客利用CVE-2023-3519在数百台Citrix服务器安装后门https://redqueen.tj-un.com/InfoDetails.html?id=1ed94496624d43be9ea8baf29a310750 研究人员发现绕过最近修补的关键Ivanti EPMM漏洞https://thehackernews.com/2023/08/researchers-discover-bypass-for.html 亚马逊云(AWS)曝新漏洞,SSM 代理已成木马!https://thehackernews.com/2023/08/researchers-uncover-aws-ssm-agent.html
发布时间: 2023 - 08 - 04
谷歌:安卓补丁漏洞让N-days与0-days同样危险https://www.freebuf.com/news/373462.html 因为补丁更新不及时Android的N-days问题严重https://www.solidot.org/story?sid=75661 Zimbra修复ZCS中已被利用的XSS漏洞CVE-2023-38750https://redqueen.tj-un.com/InfoDetails.html?id=8aa5be037ca54e5e9624be7ffd3e92f3 Google发布关于2022年度0day漏洞的回顾报告https://redqueen.tj-un.com/InfoDetails.html?id=34dce429ad5e4eb49fb653a6fb742d3e 研究人员发现利用Barracuda漏洞安装后门SUBMARINE的活动https://redqueen.tj-un.com/InfoDetails.html?id=2b2e9da2534b4a7fb16e6605eefaf2b1
发布时间: 2023 - 08 - 01
WordPressNinjaForms曝出严重安全漏洞https://www.freebuf.com/news/373286.html Ubuntu曝Linux漏洞,近40%用户受影响https://www.freebuf.com/news/373188.html AMDZen2架构处理器曝出Zenbleed预测漏洞https://www.solidot.org/story?sid=75620 VulnCheck披露影响90多万台MikroTik设备的提权漏洞https://redqueen.tj-un.com/InfoDetails.html?id=1f70f49b87234f85b95bf4cd29e9cda1 Fortinet在Microsoft消息队列服务中发现多个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=68040d1708154f7f802006b3c28227f2
发布时间: 2023 - 07 - 28
2023史诗级漏洞后门曝光!存在长达几十年,美国或用于监听全球https://www.freebuf.com/news/372975.html 2023上半年最“费钱”的漏洞来了,勒索赎金超7亿元https://www.freebuf.com/news/372887.html 苹果发布安全更新,修复了今年第11个零日漏洞!https://www.freebuf.com/news/372954.html 固件漏洞给予黑客超级用户身份https://www.solidot.org/story?sid=75599 Clop利用MOVEit漏洞的攻击预估获利7500万至1亿美元https://redqueen.tj-un.com/InfoDetails.html?id=13469cba3c8544668aa2184f82bf8362
发布时间: 2023 - 07 - 26
ApacheOpenMeetings网络会议工具曝出严重漏洞https://www.freebuf.com/news/372703.html 速查!思科SD-WAN管理曝高危漏洞https://www.freebuf.com/news/372376.html Adobe警告客户ColdFusionRCE漏洞已被攻击者利用https://www.freebuf.com/news/372341.html 思杰警告:ADC和网关存在被主动利用的零日漏洞https://securityaffairs.com/148594/security/citrix-netscaler-application-delivery-controller-flaw.html 谷歌云构建漏洞容易引发潜在的供应链攻击https://www.freebuf.com/news/372456.html
发布时间: 2023 - 07 - 21
Adobe警告客户ColdFusion RCE漏洞已被攻击者利用https://www.freebuf.com/news/372341.html 网络攻击者正利用Word文档漏洞部署LokiBot恶意软件https://www.freebuf.com/news/372336.html VED测试镜像发布:Linux数字军火漏洞利用方法和抵挡https://www.solidot.org/story?sid=75528 Rapid7透露多个Adobe ColdFusion漏洞已被主动利用https://redqueen.tj-un.com/InfoDetails.html?id=d4e472dde00b46dea99c2f5f811649a7 Zimbra提醒用户手动修复其ZCS中已被利用的XSS漏洞https://redqueen.tj-un.com/InfoDetails.html?id=a9f852b5d79e45a0864fdfe5f16175e6
发布时间: 2023 - 07 - 18
Ghostscript开源PDF库中发现关键漏洞https://www.freebuf.com/news/371927.html 哈佛大学网站现高危漏洞,可导致数据泄露https://www.freebuf.com/news/371819.html Check Point发布QuickBlox框架中漏洞的分析报告https://redqueen.tj-un.com/InfoDetails.html?id=990b5c072a614562820b949539c2d105 SonicWall紧急更新修复GMS和Analytics中的15个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=907f4e43848a4cb085200e2cc947d1af 微软7月份更新包括6个被利用0day在内的132个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=d8235d44145c48bba09169f2e665c7ec
发布时间: 2023 - 07 - 14
今年第十个零日漏洞,苹果发布紧急更新https://www.freebuf.com/news/371623.html MOVEit再现新漏洞,多个版本受影响https://www.freebuf.com/news/371525.html 研究人员发现新的Linux内核'StackRot'特权升级漏洞https://www.freebuf.com/news/371340.html 泛微E-Cology SQL注入漏洞安全风险通告https://www.secrss.com/articles/56489 Mastodon修复可导致服务器劫持的漏洞TootRoothttps://redqueen.tj-un.com/InfoDetails.html?id=0a9244bf83a94458bded0c131d744c7d
发布时间: 2023 - 07 - 11
Fortinet曝出严重RCE漏洞,30+万台设备受到严重影响https://www.freebuf.com/news/371023.html CISA在三星和D-Link设备中发现8个被积极利用的漏洞https://www.freebuf.com/articles/371012.html 研究人员发现利用WP插件Ultimate Member漏洞的攻击https://redqueen.tj-un.com/InfoDetails.html?id=4d8222f0703441c6ad06086f7713fc3a 超30万Fortinet防火墙仍未修复严重漏洞https://www.secrss.com/articles/56275 Smartbi登录代码逻辑漏洞安全风险通告https://www.secrss.com/articles/56233
发布时间: 2023 - 07 - 06
Apple多个产品高危漏洞安全风险通告https://www.secrss.com/articles/55885 Fortinet修复FortiNAC RCE漏洞CVE-2023-33299https://redqueen.tj-un.com/InfoDetails.html?id=3104afa093454dd291af7a6e9f0e62b4 Unit 42公开利用多个IoT漏洞的新一轮Mirai活动https://redqueen.tj-un.com/InfoDetails.html?id=3baa3bda7c78414c8ea79151da59a415 VMware修复其vCenter Server中的多个安全漏洞https://redqueen.tj-un.com/InfoDetails.html?id=7435caebc81c4dcc988f101fea5bd3e2 Apple修复在Triangulation活动中被利用的多个漏洞https://redqueen.tj-un.com/InfoDetails.html?id=78eaea834a0e4026af070e34846b66c4
发布时间: 2023 - 06 - 26
Mandiant称中国黑客正在利用梭子鱼漏洞https://www.solidot.org/story?sid=75267 今年最大规模网络攻击:零日漏洞击穿防线,美国近百家大型政企遭勒索https://www.secrss.com/articles/55768 金蝶云星空远程代码执行漏洞安全风险通告https://www.secrss.com/articles/55737 Progress修复MOVEit中又一个SQLi漏洞CVE-2023-35708https://redqueen.tj-un.com/InfoDetails.html?id=d791adbcf8684dea917136744449f8f9 安全警报:D-Link漏洞被利用,引起路由器用户的担忧https://thecyberexpress.com/d-link-vulnerabilities-exploited-user-at-risk/
发布时间: 2023 - 06 - 20
微软披露Azure中的严重漏洞,可用来执行跨站脚本攻击https://www.freebuf.com/news/369586.html Windows和MacOS平台上发现多个Zoom漏洞,已发布补丁https://www.freebuf.com/news/369447.html 最新权限提升漏洞CVE-2023-28252分析https://www.anquanke.com/post/id/288808 国家漏洞库CNNVD:关于微软多个安全漏洞的通报https://www.secrss.com/articles/55647 研究人员公开WP支付插件中的漏洞CVE-2023-34000https://redqueen.tj-un.com/InfoDetails.html?id=731d04efc45543598e2fdeb59d5b471f
发布时间: 2023 - 06 - 15
新的安全漏洞影响所有MOVEit传输版本https://www.freebuf.com/news/369184.html 谷歌修复了2023年的第三个Chrome0day漏洞https://www.anquanke.com/post/id/289171 FortinetFortiOSSSL-VPN远程代码执行漏洞(CVE-2023-27997)安全通告https://www.secrss.com/articles/55555 Fortinet固件更新修复FortigateSSL-VPN中的RCE漏洞https://redqueen.tj-un.com/InfoDetails.html?id=46dd6f7108244af0af75a30c2fe786e1 MOVEitTransfer修复其web应用中的多个SQL注入漏洞https://redqueen.tj-un.com/InfoDetails.html?id=1351d4b30a5b465094f8aae76ebba207
发布时间: 2023 - 06 - 13
研究人员:这个VisualStudio漏洞值得警惕https://www.freebuf.com/news/368990.html 紧急安全更新:思科和VMware修复关键漏洞https://www.freebuf.com/news/368976.html 本田被曝存在API漏洞,客户数据正处于高风险状态!https://www.freebuf.com/news/368853.html NASA网站曝严重漏洞,或将沦为黑客钓鱼网站?https://www.freebuf.com/news/368750.html Cisco修复AnyConnect中的提权漏洞CVE-2023-20178https://redqueen.tj-un.com/InfoDetails.html?id=89ba5a15ea7840b7ad451897aa5df40a
发布时间: 2023 - 06 - 09
快更新!苹果iTunes出现漏洞,威胁Windows电脑安全https://www.freebuf.com/news/368603.html CISA命令政府机构尽快修补MOVEit漏洞https://www.freebuf.com/news/368491.html Zyxel防火墙曝出高危安全漏洞,现已修复!https://www.freebuf.com/news/368489.html VMware称近期的TrueBot活动利用Netwrix漏洞来分发https://redqueen.tj-un.com/InfoDetails.html?id=3227dfb74db647c1ae02bcc4dba77b0e Kaspersky披露利用零点击漏洞攻击iOS的Triangulation活动https://redqueen.tj-un.com/InfoDetails.html?id=671c4b221b4a4cd380ecb75eade43bbb
发布时间: 2023 - 06 - 06
6月1日起,谷歌对Chrome的沙盒逃逸漏洞的奖金增加三倍https://www.freebuf.com/news/368272.html 俄罗斯称美国利用iOS漏洞入侵了数千部iPhonehttps://www.freebuf.com/news/368260.html 技嘉曝“类后门”安全漏洞,影响约700万台设备https://www.freebuf.com/news/368145.html 被黑客利用长达7个月,老牌安全厂商Barracuda曝零日漏洞https://www.freebuf.com/news/368144.html 因报告SonosOne音箱安全漏洞,研究员获10.5万美元奖金https://www.freebuf.com/news/368066.html
发布时间: 2023 - 06 - 02
CISA督促联邦政府机构“重视”Barracuda零日漏洞https://www.freebuf.com/news/367823.html Unit42发现Mirai的变体IZ1H9利用多个漏洞进行分发https://redqueen.tj-un.com/InfoDetails.html?id=5c66ed595fed423c9348f9a8f80ddb50 研究人员发现利用Win10写字板DLL劫持漏洞的QBot活动https://redqueen.tj-un.com/InfoDetails.html?id=9bcbf48c5d28465ca0b7d5374db1f986 D-Link修复了D-View8网络管理套件中的两个关键漏洞https://securityaffairs.com/146667/security/d-link-critical-flaws-d-view-8.html Zyxel防火墙和VPN设备受到严重漏洞的影响https://securityaffairs.com/146660/security/zyxel-firewall-vpn-critical-flaw.html
发布时间: 2023 - 05 - 30
强烈建议修复!GitLab曝“史上最大缺陷”漏洞https://www.freebuf.com/news/367499.html 梭子鱼邮件安全网关(ESG)通过零日漏洞被黑客入侵https://securityaffairs.com/146620/hacking/barracuda-email-security-gateway-bug.html WP Cookie Consent插件中的XSS漏洞已被大规模利用https://redqueen.tj-un.com/InfoDetails.html?id=887bdea1b9534c11b91f8c4fa07bba5d Barracuda称其ESG中漏洞CVE-2023-2868已被利用https://redqueen.tj-un.com/InfoDetails.html?id=8c7c156f18324c39a3da01676e09206d Apria Healthcare表示,可能有2万人陷入IT安全漏洞https://www.theregister.com/2023/05/23/apria_healthcare_breach/
发布时间: 2023 - 05 - 26
友情连接:
免费服务热线 ree service hotline 400-613-1868 手机端
法律声明 Copyright  西安交大捷普网络科技有限公司  陕ICP备18022218号-1

陕公网安备 61019002000857号

犀牛云提供云计算服务