This issue was addressed with a new entitlement. This issue is fixed in iOS 12.1.

Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have a race condit

A cross-site scripting (XSS) vulnerability on Comtrend AR-5387un devices with A731-4

Blinger.io v.1.0.2519 is vulnerable to Blind/Persistent XSS. An attacker can send

In EZCast Pro II, the administrator password md5 hash is provided upon a web reque

auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing laten

Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before

In Eclipse Jetty version 9.3.x and 9.4.x, the server is vulnerable to Denial of

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissector could go into

The browsing feature in the server in CUPS does not filter ANSI escape sequence

ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a use-after-free in Magick::Image::

The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in p

The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chd

The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:b

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mo

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_p

The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in prin

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_

The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c,

The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c

The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:i

In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInterna-l() due to

qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote a

The lexer_process_char_l-iteral function in jerry-core/parser/js/js-lexer.c in JerryScript

Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File

coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a craf

coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a craf

Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to ga

Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to byp

On Monday, Oct. 27, KrebsOnSecurity began following up on a tip from a reliable so

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hac

For the second time in as many years, Google is working to fix a weakness in its

Some of the world's largest Internet firms have taken steps to crack down on disin

A phone call to an Internet provider in Oregon on Sunday evening was all it t

One of the digital underground's most popular stores for peddling stolen credit card

It's Cybersecurity Awareness Month! In keeping with that theme, if you (ab)use Micro

Microsoft Corp. has executed a coordinated legal sneak attack in a bid to disrupt t

A week ago, KrebsOnSecurity broke the news that someone was attempting to disrupt th

There's an old adage in information security: "Every company gets penetration tested

This blog was written by an independent guest blogger. The rise of social media h

This blog was written by a third party author As organizations continue moving away