yaracroft @venom@nanao.cybtex.fr

A vulnerability in 그누보드 (gnuboard5) allows a malicious actor to de-obfuscate all #email addresses of #online users. #vuln #web #software #informatique

https://0g.vc/posts/insecure-cipher-gnuboard5/

CVE-2022-0337 - Several web browsers based on the Chromium engine, for instance, #Google #Chrome, #Microsoft #Edge, #Opera running on #Microsoft #Windows. #vuln #informatique

https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera

CVE-2021-34484 - A Windows local privilege escalation zero-day vulnerability that #Microsoft has failed to fully address for several months now, allows users to gain administrative privileges in Windows 10, #Windows 11, and Windows Server. #vuln #cyber #threats #informatique

https://www.bleepingcomputer.com/news/microsoft/windows-zero-day-flaw-giving-admin-rights-gets-unofficial-patch-again/

RouterOS Scanner is a tool to scan for RouterOS (Mikrotik) forensic artifacts and vulnerabilities. #tools #routers #devices #vuln #networks #python #informatique

http://github.com/microsoft/routeros-scanner

CVE-2022-0778 - OpenSSL (Severity: High) : Infinite loop in BN_mod_sqrt() reachable when parsing certificates #vuln #security #informatique

https://www.openssl.org/news/secadv/20220315.txt

Apple patches 87 security holes #vuln #apple #iphones #macos #windows #cyber #software #threats #informatique

https://nakedsecurity.sophos.com/2022/03/15/apple-patches-87-security-holes-from-iphones-and-macs-to-windows/

On March 15, 2022, users of the popular Vue.js frontend #JavaScript #framework started experiencing what can only be described as a #supply chain attack impacting the npm ecosystem. This was the result of the nested dependencies node-ipc and peacenotwar being sabotaged as an act of protest by the maintainer of the node-ipc package. #vuln #cyber #threats #informatique

hhttps://snyk.io/blog/peacenotwar-malicious-npm-node-ipc-package-vulnerability/

CVE-2022-25636 #vuln #linux #threats #informatique

https://github.com/Bonfee/CVE-2022-25636

A detailed post on how Daniel Eshetu chained 3 vulnerabilities (A path traversal (CVE-2021-45968), an SSRF in an external piece of software (CVE-2021-45967) and a post-authentication RCE (CVE-2021-45966)) into a full pre-auth RCE in 🇩🇪 Pascom (pascom.net) Cloud phone system. #vuln #devices #phone #cloud #telecom #informatique

https://kerbit.io/research/read/blog/4

🔥 CVE-2022-26320 - Fermat Attack on RSA. Multiple printers of the Fujifilm Apeos, DocuCentre and DocuPrint series generate self-signed TLS certificates with vulnerable RSA keys. Some Canon printers have the ability to generate a CSR with a vulnerable RSA key. Both the Fujifilm and the Canon printers use the Basic Crypto Module of the Safezone library by Rambus. Other products using this module to generate RSA keys may also be affected. #crypto #devices #firmware #vuln #informatique

https://fermatattack.secvuln.info/

As #Microsoft Windows doesn't verify that the SIDs exist on the domain when an ACL is created it's possible to insert a non-existent SID into any object's ACL we have privileges over. The main exploitation vector here is persistence. Threat actors with domain control can add permissions and privileges to future SIDs and regain a foothold by creating a user or computer account. #windows #malware #powershell #vuln #audit #informatique

https://www.varonis.com/blog/synthetic-sid

🔥 16 high-severity vulnerabilities in various implementations of UEFI #firmware affecting multiple enterprise products from HP, including laptops, desktops, point-of-sale systems, and edge computing nodes. #devices #cyber #vuln #threats #uefi #software #informatique

https://www.binarly.io/posts/Repeatable_Firmware_Security_Failures_16_High_Impact_Vulnerabilities_Discovered_in_HP_Devices/index.html

🇺🇸 Vulnerabilities in animal tracking software USAHERDS (Animal Health Emergency Reporting Diagnostic System) and Log4j gave the notorious Barium (APT41) group a foothold in multiple government systems. #usa #software #vuln #government #digital #cyber #food #numérique #threats #informatique

https://www.wired.com/story/china-apt41-hacking-usaherds-log4j

#Microsoft has addressed a vulnerability in the #Azure Automation service that could have allowed attackers to take complete control over other Azure customers' data. #vuln #threats #databreach #informatique

https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/

🐧 dirtypipez - This PoC for CVE-2022-0847 is able to overwrite a SUID program like ./dirtypipez /usr/bin/su #vuln #linux #informatique

https://haxx.in/files/dirtypipez.c

CVE-2022-0847 - A flaw was found in the way the « flags » member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the 🐧 Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. #vuln #linux #informatique

https://dirtypipe.cm4all.com/

🔥 (CVE-2022-26485 & CVE-2022-26486) 0-day ITW #vuln #mozilla #firefox #browser #threats #informatique

https://www.mozilla.org/en-US/security/advisories/mfsa2022-09/

Pwning Hashnode blogging platform using Markdown. Even the smallest of low severity issues can be escalated when chained with other vulnerabilities. #vuln #informatique

https://blog.dixitaditya.com/pwning-a-server-using-markdown

🔥 CVE-2022-24724 - A vulnerability, discovered by Felix Wilhelm, exists in the table markdown extensions of cmark-gfm. If cmark-gfm is used for rendering remote user controlled markdown, this vulnerability may lead to Remote Code Execution (RCE) in applications employing affected versions of the cmark-gfm library. #vuln #informatique

https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x

Nice write-up that describes how to simplify Alexander Popov PoC exploit for CVE-2021-26708 in the #Linux kernel #vuln

https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html