Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-35979

An issue was discovered in Digi RealPort through 4.8.488.0. The ‘encrypted’ mode is vulnerable to man-in-the-middle attacks and does not perform authentication.

CVE
Open in Source

Related news

CVE-2021-25504: Samsung Mobile Security

Intent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.

CVE-2020-25366

An issue in the component /cgi-bin/upload_firmware.cgi of D-Link DIR-823G REVA1 1.02B05 allows attackers to cause a denial of service (DoS) via unspecified vectors.

CVE-2021-22403: July

There is a vulnerability of hijacking unverified providers in Huawei Smartphone.Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands.

Zero-click RCE vulnerability in Hikvision security cameras could lead to network compromise

Abuse of flaw could give attackers greater access to devices even than its owner

CVE-2021-3642: 1981407 – (CVE-2021-3642) CVE-2021-3642 wildfly-elytron: possible timing attack in ScramServer

A flaw was found in Wildfly Elytron in versions prior to 1.10.14.Final, prior to 1.15.5.Final and prior to 1.16.1.Final where ScramServer may be susceptible to Timing Attack if enabled. The highest threat of this vulnerability is confidentiality.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE