WIE LANGE DAUERT DIE IDENTITÄTSÜBERPRÜFUNG BEI COINBASE?
COINBASE-JOBS
Event: Fal.Con 2024
Type: Conference
Dates: September 16-19, 2024
Location: Las Vegas, NV
Warning Card
Success Card
MÜNZENMARKT
Affected: microsoft, CVE: CVE-2024-38140
Affected: microsoft, CVE: CVE-2024-39804
Affected: microsoft, CVE: CVE-2024-43106
Affected: microsoft, CVE: CVE-2024-41145
Affected: microsoft, CVE: CVE-2024-41159
Affected: microsoft, CVE: CVE-2024-41165
Affected: microsoft, CVE: CVE-2024-41138
Affected: microsoft, CVE: CVE-2024-42220
Affected: microsoft, CVE: CVE-2024-42004
Affected: microsoft, CVE: CVE-2024-38185
Affected: microsoft, CVE: None
Affected: microsoft, CVE: CVE-2024-38186
Affected: outlook, CVE: CVE-2024-42220
Cyber Latest
| Source | Title | Description | Link |
|---|---|---|---|
| RecordedFuture | Google uses large language model to discover real-world vulnerability | In a blog post on Friday, Google said it believes the bug is the first public example of an AI tool finding a previously unknown exploitable memory-safety issue in widely used real-world software.... | Link |
| RecordedFuture | Federal agency investigating how Meta uses consumer financial data for advertising | The Consumer Financial Protection Bureau (CFPB) has notified Meta it may take “legal action” over potential misuse of individuals’ financial data from third parties.... | Link |
| RecordedFuture | Election systems remain safe from foreign meddling, CISA chief says | The technologies that allow states to collect and tally ballots remain safe from foreign adversaries as Election Day approaches, CISA Director Jen Easterly says.... | Link |
| RecordedFuture | North Korean hackers seen collaborating with Play ransomware group, researchers say | The incident signaled North Korea’s deeper involvement in the ransomware landscape after Jumpy Pisces actors were previously implicated by the Justice Department in attacks involving the Maui ransomware.... | Link |
| RecordedFuture | Malware campaign expands its use of fake CAPTCHAs | A previously spotted malware campaign that uses fake CAPTCHAs to lure victims is expanding to new potential targets and now includes the Lumma infostealer and Amadey botnet, researchers say.... | Link |
| RecordedFuture | Ohio's capital says July ransomware attack leaked info of 500,000 | The city government of Columbus, Ohio, said a ransomware attack that stirred up a high-profile lawsuit had exposed the data of about 500,000 people.... | Link |
| RecordedFuture | Cyberattack disrupts classes at Irish technology university | Students were advised that classes at SETU's Waterford campuses would be postponed so academics could plan around the disruption.... | Link |
| RecordedFuture | Rep. Yvette Clarke on AI-fueled disinformation: ‘We have not protected ourselves in time for this election cycle’ | "There are a whole host of ways in which this technology can be used to subvert the democratic process," said Clarke, who has sponsored dozens of cybersecurity-focused bills in Congress.... | Link |
| RecordedFuture | German police arrest two for alleged ties to DDoS-for-hire platform | German police shut down a platform used to carry out distributed denial-of-service (DDoS) attacks and arrested two men who allegedly operated the site.... | Link |
| RecordedFuture | California court suffering from tech outages after cyberattack | The San Joaquin County Superior Court said nearly all of its digital services have been knocked offline due to a cyberattack that began earlier this week.... | Link |
| RecordedFuture | Moldova elects pro-West president Maia Sandu despite Russian interference | Election observers said they had recorded more than 100 incidents affecting the vote in Moldova, and an adviser to President Maia Sandu said there was “massive interference" from Russia.... | Link |
| RecordedFuture | FBI wants more info on hackers behind Sophos exploitation after report on China’s intrusions | ... | Link |
| RecordedFuture | FBI: Iranian cyber group targeted Summer Olympics with attack on French display provider | The hacking group's goal was to “display photo montages denouncing the participation of Israeli athletes in the 2024 Olympic and Paralympic Games," the FBI said.... | Link |
| RecordedFuture | Chinese state-backed hackers breached 20 Canadian government networks over four years, agency warns | In its latest biennial threat assessment, Canada's cybersecurity agency tallied up known intrusions by Chinese government-backed hackers into government networks.... | MPO777 |
| RecordedFuture | Election systems remain safe from foreign meddling, CISA chief says | The technologies that allow states to collect and tally ballots remain safe from foreign adversaries as Election Day approaches, CISA Director Jen Easterly says.... | Link |
CVE News
| Discovered On | CVE | Description | CVSS |
|---|---|---|---|
| 2024-10-30 | CVE-2024-33699 | LevelOne WBR-6012 Web Application weak authentication vulnerability | 9.9 |
| 2024-10-30 | CVE-2024-33626 | LevelOne WBR-6012 Web Application information disclosure vulnerability | 5.3 |
| 2024-10-30 | CVE-2024-23309 | LevelOne WBR-6012 Web Application authentication bypass vulnerability | 9.0 |
| 2024-10-30 | CVE-2024-33623 | LevelOne WBR-6012 Web Application denial of service vulnerability | 3.7 |
| 2024-10-30 | CVE-2024-28052 | LevelOne WBR-6012 Web Application buffer overflow vulnerability | 5.3 |
| 2024-10-30 | CVE-2024-33603 | LevelOne WBR-6012 Web Application information disclosure vulnerability | 5.3 |
| 2024-10-30 | CVE-2024-31152 | LevelOne WBR-6012 Web Application improper resource allocation vulnerability | 5.3 |
| 2024-10-30 | CVE-2024-33700 | LevelOne WBR-6012 FTP improper input validation vulnerability | 7.5 |
| 2024-10-30 | CVE-2024-24777 | LevelOne WBR-6012 Web Application cross-site request forgery (CSRF) vulnerability | 8.8 |
| 2024-10-30 | CVE-2024-32946 | LevelOne WBR-6012 Web and FTP cleartext transmission vulnerability | 5.9 |
| 2024-10-23 | CVE-2024-0118 | NVIDIA D3D10 Driver Shader Functionality out-of-bounds read vulnerability due to excessive loop iteration | 7.8 |
| 2024-10-23 | CVE-2024-0120 | NVIDIA D3D10 Driver Shader Functionality STORE_STRUCTURED instructionout-of-bounds read vulnerability | 7.8 |
| 2024-10-23 | CVE-2024-0119 | NVIDIA D3D10 Driver Shader Functionality MOV instruction out-of-bounds read vulnerability | 7.8 |
| 2024-10-23 | CVE-2024-0121 | NVIDIA D3D10 Driver Shader Functionality SAMPLE out-of-bounds read vulnerability | 7.8 |
| 2024-10-23 | CVE-2024-0117 | NVIDIA D3D10 Driver Shader Functionality LD instruction out-of-bounds read vulnerability | 7.8 |
| 2024-10-03 | SLOT138 | GNOME Project G Structured File Library (libgsf) Compound Document Binary File Directory integer overflow vulnerability | 8.4 |
| 2024-10-03 | CVE-2024-41922 | Veertu Anka Build registry log files directory traversal vulnerability | 7.5 |
| 2024-10-03 | gateio | GNOME Project G Structured File Library (libgsf) Compound Document Binary File Sector Allocation Table integer overflow vulnerability | 8.4 |
| 2024-10-03 | CVE-2024-41163 | Veertu Anka Build registry archive files directory traversal vulnerability | 7.5 |
| 2024-10-03 | CVE-2024-39755 | Veertu Anka Build node agent update privilege escalation vulnerability | 7.8 |
| 2024-10-02 | CVE-2024-28888 | Foxit Reader checkbox Calculate use-after-free vulnerability | 8.8 |
| 2024-09-25 | CVE-2024-38140 | Microsoft Pragmatic General Multicast Server PgmCloseConnection stale memory dereference | 9.8 |
| 2024-09-18 | CVE-2024-34026 | OpenPLC OpenPLC_v3 OpenPLC Runtime EtherNet/IP parser stack-based buffer overflow vulnerability | 9.0 |
| 2024-09-12 | CVE-2024-45383 | Microsoft High Definition Audio Bus Driver HDAudBus_DMA multiple irp complete requests vulnerability | 5.0 |
| 2024-09-11 | CVE-2024-38257 | Microsoft Windows 10 AllJoyn Router Service information disclosure vulnerability | 5.3 |
| 2024-09-10 | gateio app | Adobe Acrobat Reader Annotation Object Page Race Condition Vulnerability | 8.8 |
| 2024-08-19 | CVE-2024-39804 | Microsoft PowerPoint for macOS library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-43106 | Microsoft Excel for macOS library injection vulnerability | 7.1 |
| 2024-08-19 | MERDEKA777 | Microsoft Teams (work or school) for macOS WebView.app helper app library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-41159 | Microsoft OneNote for macOS library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-41165 | Microsoft Word for macOS library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-41138 | Microsoft Teams (work or school) for macos com.microsoft.teams2.modulehost.app helper app library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-42220 | Microsoft Outlook for macOS library injection vulnerability | 7.1 |
| 2024-08-19 | CVE-2024-42004 | Microsoft Teams (work or school) for macOS library injection vulnerability | 7.1 |
| 2024-08-13 | CVE-2024-41830 | Adobe Acrobat Reader AV3DVirtAnnot Object Format Event Use-After-Free Vulnerability | 8.8 |
| 2024-08-13 | CVE-2024-38187 | Microsoft Windows CLIPSP.SYS License Update Field Type 0x20 out-of-bounds read vulnerability | 6.8 |
| 2024-08-13 | CVE-2024-41832 | Adobe Acrobat Reader Font gvar TupleVariation Data Out-Of-Bounds Read Vulnerability | 6.5 |
| 2024-08-13 | None | Microsoft Windows CLIPSP.SYS License Update Field Type 0xD3 out-of-bounds read vulnerability | 6.8 |
| 2024-08-13 | CVE-2024-41835 | Adobe Acrobat Reader Font Packed Point Numbers Out-Of-Bounds Read Vulnerability | 6.5 |
| 2024-08-13 | CVE-2024-38185 | Microsoft CLIPSP.SYS License update out-of-bounds read vulnerability | 8.4 |
| 2024-08-13 | None | Microsoft CLIPSP.SYS License Update out-of-bounds read vulnerability | 7.4 |
| 2024-08-13 | CVE-2024-38184 | Microsoft CLIPSP.SYS License update signature check bypass vulnerability | 6.2 |
| 2024-08-13 | None | Microsoft Windows CLIPSP.SYS License Update Field Type 0xCC out-of-bounds read vulnerability | 6.8 |
| 2024-08-13 | CVE-2024-38186 | Microsoft CLIPSP.SYS License update privilege escalation vulnerability | 7.4 |