➠ XStream up to 1.4.15 deserialization [CVE-2021-21343]
A vulnerability has been found in XStream up to 1.4.15 and classified as critical. This vulnerability affects some unknown processing. Upgrading to version 1.4.16 eliminates this vulnerability. The upgrade is hosted for download at x-stream.github.io....
Zur Startseite
➤ Ähnliche Beiträge für 'XStream up to 1.4.15 deserialization [CVE-2021-21343]'
2022 Top Routinely Exploited Vulnerabilities
vom 790.1 Punkte
SUMMARY
The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (CSA):
United States: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI)
Australia:
The July 2021 Security Update Review
vom 778.12 Punkte
The second Tuesday of the month is here, and it brings with it the latest security patches from Adobe and Microsoft. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings. Adobe Patch
The April 2021 Security Update Review
vom 748.33 Punkte
It’s the second Tuesday of the month, which means the latest security updates from Adobe and Microsoft are released. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings. Adobe Patch
AA22-117A: 2021 Top Routinely Exploited Vulnerabilities
vom 675.24 Punkte
Original release date: April 27, 2022 | Last revised: April 28, 2022SummaryThis joint Cybersecurity Advisory (CSA) was coauthored by cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom: the Cybersecuri
The March 2021 Security Update Review
vom 661.43 Punkte
It’s the third second Tuesday of the year, which means we get the latest security updates from Adobe and Microsoft. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings. Adobe Patch
The January 2021 Security Update Review
vom 616.55 Punkte
Welcome to the new year, and welcome to the first Patch Tuesday of 2021. Take a break from your regularly scheduled activities and join us as we review the details for the latest security offerings from Microsoft and Adobe. Adobe Patches for January 2021This month,
USN-3415-1: tcpdump vulnerabilities
vom 593.87 Punkte
Ubuntu Security Notice USN-3415-1
13th September, 2017
tcpdump vulnerabilities
A security issue affects these releases of Ubuntu and its
derivatives:
Ubuntu 17.04
Ubuntu 16.04 LTS
Ubuntu 14.04 LTS
Summary
Several security issues were fixe
USN-3415-2: tcpdump vulnerabilities
vom 593.87 Punkte
Ubuntu Security Notice USN-3415-2
13th September, 2017
tcpdump vulnerabilities
A security issue affects these releases of Ubuntu and its
derivatives:
Ubuntu 12.04 LTS
Summary
Several security issues were fixed in tcpdump
Software description
tcpdump
The February 2021 Security Update Review
vom 458.94 Punkte
It’s the second Tuesday of the month, and that means the latest security updates from Adobe and Microsoft. Take a break from your regularly scheduled activities and join us as we review the details of their latest security offerings. Adobe Patches for
Riding the InfoRail to Exploit Ivanti Avalanche
vom 448.12 Punkte
Back in 2021, I stumbled upon a proof of concept describing an arbitrary file read vulnerability in the Ivanti Avalanche mobile device management tool. As I was not aware of this product, I decided to take a quick look at the vendor’s website to learn mo
The August 2021 Security Update Review
vom 425.85 Punkte
It’s the second Tuesday of the month, and that means the latest security updates from Adobe and Microsoft have been released. Take a break from your regularly scheduled activities and join us as we review the details for their latest security offerings.
XStream bis 1.4.9 xstream.fromXML Denial of Service
vom 423.02 Punkte
Eine problematische Schwachstelle wurde in XStream bis 1.4.9 entdeckt. Davon betroffen ist die Funktion xstream.fromXML. Durch die Manipulation mit einer unbekannten Eingabe kann eine Denial of Service-Schwachstelle (Crash) ausgenutzt werden. Klassif