Siemens SIMATIC WinCC, OpenPCS

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities ...

Continue Reading
avro vs protobuf

A Kickoff Discussion on Core Aspects of Avro & Protobuf When deliberating on the subject of data structure encoding, a tandem of tools frequently emerges in technical discussions: Avro and Pro ...

Continue Reading
Code injection

An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in...Read More ...

Continue Reading
CVE-2023-36177

An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in...Read More ...

Continue Reading
Malicious code in bitcoin-json-rpc-adapter (npm)

-= Per source details. Do not edit below this line.=- Source: ghsa-malware (6343f2f77d5f772e6b17c00fed2653e9c0c887f0e0ae1fda00de4b0cde9f8ca5) Any computer that has this package installed or running sh ...

Continue Reading
Malicious code in json-rpc-adapter (npm)

-= Per source details. Do not edit below this line.=- Source: ghsa-malware (f4fdeb0a41688e0145066a567cbaa4beda509d5d3f9f84b13e7dcff7e289fd11) Any computer that has this package installed or running sh ...

Continue Reading
CVE-2023-34450

CometBFT is a Byzantine Fault Tolerant (BFT) middleware that takes a state transition machine and replicates it on many machines. An internal modification made in versions 0.34.28 and 0.37.1 to the wa ...

Continue Reading
GL.iNet Unauthenticated Remote Command Execution via the logread module.

A command injection vulnerability exists in multiple GL.iNet network products, allowing an attacker to inject and execute arbitrary shell commands via JSON parameters at the gl_system_log and gl_crash ...

Continue Reading

Back to Main

Subscribe for the latest news: