安全研究 Safety research
工控安全遭严峻挑战,56个严重漏洞席卷OT设备https://www.freebuf.com/news/336969.html Google披露Apple Safari漏洞CVE-2022-22620的细节https://redqueen.tj-un.com/InfoDetails.html?id=eeecba743708475999cf36c5605e2ee7 开源代码存在安全隐患:一个项目平均有49个漏洞https://www.cnbeta.com/articles/tech/1283559.htm 威胁行为者利用RIG漏洞传播Dridex银行木马https://securityaffairs.co/wordpress/132498/malware/rig-exploit-kit-dridex.html 俄罗斯APT28滥用Follina漏洞分发恶意软件CredoMaphttps://redqueen.tj-un.com/InfoDetails.html?id=f5f5079ae1e44cf29872cea123cb74e4
发布时间: 2022 - 06 - 23
使用西门子工控系统的注意了,已经暴露了15个安全漏洞https://www.freebuf.com/news/336659.html 上百万WordPress网站的插件Ninja Forms被强制更新https://redqueen.tj-un.com/InfoDetails.html?id=781882f2a2f145ba947bf24c46523cde Blue Mockingbird团伙滥用Telerik UI中的漏洞挖矿https://redqueen.tj-un.com/InfoDetails.html?id=dec0e6cc4b084b5e9b54cd6c64c7bfaf CMS Made Simple SQL注入漏洞 CVE-2021-40961https://redqueen.tj-un.com/IntelDetails.html?id=14b69e64d5ae4551aeb01955dcbca1ba Apache Dubbo 代码问题漏洞 CVE-2022-24969https://redqueen.tj-un.com/IntelDetails.html?id=0257f9d9136544d3ab9f032d0d46e5e4
发布时间: 2022 - 06 - 20
邮件巨头Zimbra曝严重漏洞,黑客无需密码即可登录https://netsecurity.51cto.com/article/711775.html x86 CPU,危!最新漏洞引发热议,英特尔“全部处理器”受影响https://netsecurity.51cto.com/article/711671.html 思科电子邮件存在安全漏洞,攻击者可利用漏洞登录其Web管理界面https://www.freebuf.com/news/336376.html 攻击者利用三年前的Telerik漏洞部署Cobalt Strikehttps://www.freebuf.com/news/336370.html 俄沙虫组织利用Follina漏洞,入侵乌克兰重点机构https://www.freebuf.com/news/336151.html
发布时间: 2022 - 06 - 16
小心!Atlassian Confluence服务器中的RCE漏洞正被积极利用https://www.freebuf.com/news/336037.html HID Mercury曝严重漏洞,可解锁访问控制系统https://www.freebuf.com/news/336005.html Windows域提权漏洞CVE-2022-26923分析与复现https://www.freebuf.com/vuls/335471.html MIT发现苹果M1中新型硬件漏洞:可不留痕迹攻破安全机制https://netsecurity.51cto.com/article/711407.html Bandisoft ARK library缓冲区错误漏洞 CVE-2021-26635https://redqueen.tj-un.com/IntelDetails.html?id=4be3123fc40141ebb3f2eedc4dafe29a
发布时间: 2022 - 06 - 13
0day漏洞:Chromium v8引擎最新UAF代码执行漏洞分析https://www.freebuf.com/articles/web/334818.html Checkpoint披露摩托罗拉用的Unisoc芯片中漏洞的详情https://redqueen.tj-un.com/InfoDetails.html?id=d7296d10691c49f3b7a08812553e1c42 Cisco Common Services Platform Collector 跨站脚本漏洞 CVE-2022-20667https://redqueen.tj-un.com/IntelDetails.html?id=0b125616fbcc43a8b79db180d5d5981b 10个最常见的Android银行木马的下载量超过10亿次https://redqueen.tj-un.com/InfoDetails.html?id=bab454854699486b8f3002e71187c8c9 radare2 缓冲区错误漏洞 CVE-2022-1899https://redqueen.tj-un.com/IntelDetails.html?id=18cfc1d987394e99a48c9252565b8121
发布时间: 2022 - 06 - 09
新的Windows搜索零日漏洞可被远程托管恶意软件利用https://www.freebuf.com/articles/335311.html 紫光展锐曝高危漏洞,可阻止手机联网https://www.freebuf.com/news/335294.html GitLab 通过安全更新修复了帐户接管高危漏洞https://www.freebuf.com/news/335291.html 漏洞分析:WSO2 API Manager任意文件上传、远程代码执行漏洞https://www.freebuf.com/vuls/334262.html 美国BIS发布网络安全漏洞出口禁令,全球漏洞共享机制遭严峻挑战https://www.freebuf.com/news/335192.html
发布时间: 2022 - 06 - 06
速看,微软MSDT零日漏洞的补丁来了https://www.freebuf.com/news/334919.html CVE-2022-21882 Win32k内核提权漏洞深入分析https://www.freebuf.com/vuls/329383.html 零日漏洞积极利用,或影响多个Microsoft Office版本https://www.freebuf.com/articles/334861.html CVE-2021-31805 Apache Struts2 远程代码执行漏洞https://www.freebuf.com/vuls/333542.html Remcos远控木马利用CVE-2018-0798漏洞广泛传播https://redqueen.tj-un.com/IntelDetails.html?id=0027df80075a483cadcd98e403aab843
发布时间: 2022 - 06 - 02
微软发现Android预装应用受高危漏洞影响https://www.freebuf.com/news/334690.html 如何使用CVE-Tracker随时获取最新发布的CVE漏洞信息https://www.freebuf.com/vuls/332719.html Terra区块链曝出被忽视七个月的DeFi漏洞 致9000万美元资金被窃取https://netsecurity.51cto.com/article/710380.html 暗网市场Versus被爆存在信息泄露漏洞后决定关闭https://redqueen.tj-un.com/InfoDetails.html?id=e6181366309549188ef54f5b8e58d8e3 EnemyBot恶意软件增加了针对VMware等关键漏洞的攻击https://www.freebuf.com/news/334705.html
发布时间: 2022 - 05 - 31
支付巨头PayPal曝大漏洞,黑客可直接窃取用户资金https://www.freebuf.com/news/334074.html CVE-2021-31805 Apache Struts2 远程代码执行漏洞分析https://www.freebuf.com/vuls/333576.html Mozilla修复在Pwn2Own上利用的Firefox和Thunderbird 0dayhttps://www.solidot.org/story?sid=71636 黑客使用5个0day漏洞在Android设备安装间谍软件https://www.solidot.org/story?sid=71608 Intel BIOS firmware缓冲区错误漏洞CVE-2021-0153https://redqueen.tj-un.com/IntelDetails.html?id=124ce9c64d724ddebebb89567307ba56
发布时间: 2022 - 05 - 26
谷歌:Predator间谍软件使用零日漏洞感染Android设备https://www.freebuf.com/news/333988.html 思科修复在野被利用的iOS XR漏洞https://www.freebuf.com/news/333973.html Pwn2Own 2022第二日战报:参赛者成功演示Windows 11特权提升漏洞https://www.cnbeta.com/articles/tech/1271947.htm Intel BIOS firmware 缓冲区错误漏洞 CVE-2021-0153https://redqueen.tj-un.com/IntelDetails.html?id=124ce9c64d724ddebebb89567307ba56 多款Intel产品安全漏洞 CVE-2021-33077https://redqueen.tj-un.com/IntelDetails.html?id=f4b9fc14082a45b0aa1035be5511445b
发布时间: 2022 - 05 - 23
VMware修补了多个产品中的关键身份验证绕过漏洞https://www.freebuf.com/news/333590.html NVIDIA修复了Windows GPU显示驱动程序中的十个漏洞https://www.freebuf.com/news/333474.html 智能汽车曝出重大漏洞,黑客10秒开走特斯拉https://www.freebuf.com/news/333479.html 黑客利用Tatsu WordPress 插件漏洞,进行数百万次攻击https://www.freebuf.com/news/333471.html 苹果紧急更新修复入侵Mac和Watch的零日漏洞https://www.freebuf.com/news/333384.html
发布时间: 2022 - 05 - 19
黑客正在利用Zyxel防火墙和VPN中的关键漏洞https://www.freebuf.com/articles/333235.html SonicWall:请立即修复SMA 1000漏洞https://www.freebuf.com/articles/333220.html 深度洞察|关于JavaScript开源生态中安全漏洞传播及其演变分析https://www.freebuf.com/vuls/331960.html LibreHealth EHR 跨站脚本漏洞 CVE-2022-29940https://redqueen.tj-un.com/IntelDetails.html?id=a310b5136b8d42bb964565ebd6648c9e F5 BIG-IP APM 输入验证错误漏洞 CVE-2022-27634https://redqueen.tj-un.com/IntelDetails.html?id=a97c7430394a4227b9492c757042f4e3
发布时间: 2022 - 05 - 16
微软修复了所有Windows版本中的新NTLM零日漏洞https://netsecurity.51cto.com/article/708685.html 惠普修复了影响200多种型号的固件漏洞https://www.freebuf.com/news/332911.html F5 BIG-IP产品中关键RCE漏洞利用程序被开发https://www.freebuf.com/news/332702.html Nedi Consulting NeDi 代码注入漏洞 CVE-2021-26753https://redqueen.tj-un.com/IntelDetails.html?id=701e17cf40734beaa042ea15ff9c5599 JetBrains Hub 跨站脚本漏洞 CVE-2022-29811https://redqueen.tj-un.com/IntelDetails.html?id=c5c68042b49e4b8bb45dbc66d5010d57
发布时间: 2022 - 05 - 12
QNAP修复了关键的QVR远程命令执行漏洞https://www.freebuf.com/articles/332343.html微软NetLogon特权提升漏洞(CVE-2020-1472)深度挖掘https://www.freebuf.com/vuls/332147.html 谷歌修复了积极利用的Android内核漏洞https://www.freebuf.com/articles/332228.html 数百万用户受影响,杀毒软件Avast中潜藏近10年的漏洞被披露https://www.freebuf.com/news/332215.html 渗透基础—Exchange版本探测和漏洞检测https://netsecurity.51cto.com/article/708344.html
发布时间: 2022 - 05 - 09
设备接管风险警告!F5发现一个关键BIG-IP远程执行漏洞https://www.freebuf.com/news/332097.html DNS曝高危漏洞,影响数百万物联网设备https://www.freebuf.com/news/332069.html 移动发送奇怪短信?我想起了通讯行业的核弹级漏洞https://www.freebuf.com/news/331797.html Google Go 安全漏洞 CVE-2022-27536https://redqueen.tj-un.com/IntelDetails.html?id=041d1a1ee9804538aea2bc9d1ee9ca76 MISP 代码问题漏洞 CVE-2022-29528https://redqueen.tj-un.com/IntelDetails.html?id=fafdd58917a24ea6a1d7d16ee6e612dc
发布时间: 2022 - 05 - 05
微软曝光Nimbuspwn漏洞组合 可在Linux本地提权部署恶意软件https://netsecurity.51cto.com/article/707672.html 微软修复了暴露用户数据库的ExtraReplica Azure漏洞https://www.freebuf.com/news/331712.html 2021年利用最多的前15个漏洞出炉,附列表https://www.freebuf.com/news/331527.html 黑客利用关键的VMware RCE漏洞安装后门https://www.freebuf.com/articles/331435.html Log4Shell过气了?攻击面仍大量存在https://www.freebuf.com/news/331404.html
发布时间: 2022 - 04 - 29
ALAC音频格式存漏洞,全球超半数Android用户隐私受威胁https://www.freebuf.com/news/330582.html 一款家用新冠检测电子试剂盒存在漏洞 可让用户伪造结果https://www.cnbeta.com/articles/tech/1261089.htm 甲骨文修复Java“年度加密漏洞”,影响Java 15及以上版本https://netsecurity.51cto.com/article/707073.html 针对DVR设备的新BotenaGo恶意软件变种https://netsecurity.51cto.com/article/707024.html ESET发出警告,联想三个漏洞影响数百万台电脑https://netsecurity.51cto.com/article/707010.html
发布时间: 2022 - 04 - 22
思科修复高危身份验证绕过漏洞https://www.freebuf.com/news/329230.html Spring Framework CVE-2022-22965漏洞分析https://www.freebuf.com/articles/web/328521.html 7-Zip被爆零日安全漏洞:可提权执行代码 但用户可简单操作使其失效https://www.cnbeta.com/articles/tech/1259869.htm Solarwinds Orion Platform 安全漏洞 CVE-2021-3109https://redqueen.tj-un.com/IntelDetails.html?id=c796f1e7a27547dc9c6403a2eed186f2 SEO Panel 跨站脚本漏洞 CVE-2021-29010https://redqueen.tj-un.com/IntelDetails.html?id=c42f4b87537646a6a8e2a52cd84041c7
发布时间: 2022 - 04 - 19
VMware CVE-2022-22954漏洞强势来袭 请立刻打补丁!https://netsecurity.51cto.com/article/706589.html Elementor WordPress插件存在漏洞,可能影响50万个站点https://netsecurity.51cto.com/article/706579.html 谷歌浏览器紧急更新,又修复一零日漏洞https://www.freebuf.com/news/329068.html Apache Struts中的CVE-2021-31805 RCE漏洞终于得到修复https://www.freebuf.com/news/328850.html 惠普Teradici PCoIP受漏洞影响, 波及1500万个端点https://www.freebuf.com/news/328555.html
发布时间: 2022 - 04 - 15
黑客利用Spring4Shell漏洞部署Mirai恶意软件https://netsecurity.51cto.com/article/706209.html 开发人员保护工具包管理器中的三种常见漏洞https://netsecurity.51cto.com/article/706129.html Grafana安全漏洞CVE-2021-28146https://redqueen.tj-un.com/IntelDetails.html?id=4a5d7cdc7d414ed0902f71acb37213f0 SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 CVE-2021-27595https://redqueen.tj-un.com/IntelDetails.html?id=d605229d8c65496686feaf886285b367 Grafana Labs Grafana Enterprise 安全漏洞 CVE-2021-27962https://redqueen.tj-un.com/IntelDetails.html?id=cbe307c40b5241c6be9e0d2f0145688e
发布时间: 2022 - 04 - 12
友情连接:
免费服务热线 ree service hotline 400-613-1868 手机端
法律声明 Copyright  西安交大捷普网络科技有限公司  陕ICP备18022218号-1

陕公网安备 61019002000857号

犀牛云提供云计算服务