Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-2316PUBLISHED: 2022-07-06HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site.
CVE-2022-2318PUBLISHED: 2022-07-06There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
CVE-2022-33047PUBLISHED: 2022-07-06OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c.
CVE-2022-31111PUBLISHED: 2022-07-06
Frontier is Substrate's Ethereum compatibility layer. In affected versions the truncation done when converting between EVM balance type and Substrate balance type was incorrectly implemented. This leads to possible discrepancy between appeared EVM transfer value and actual Substrate value transferre...
CVE-2022-31124PUBLISHED: 2022-07-06
openssh_key_parser is an open source Python package providing utilities to parse and pack OpenSSH private and public key files. In versions prior to 0.0.6 if a field of a key is shorter than it is declared to be, the parser raises an error with a message containing the raw field value. An attacker a...
User Rank: Apprentice
11/5/2015 | 6:38:47 PM
How about a trusted flashlight app, downloaded by the hundreds of millions spying on you?
Go to finovate dot com forward slash videos forward slash finovatefindevr-2015-snoopwall and see for yourself!
It's serious and most of the big banks don't care. They want to write it off and let you think their smartphone apps are safe - as safe as an ATM machine being SKIMMED every day!