CloudView NMS before 2.10a has XSS via a TELNET login.
Category Archives: Security
Security
CVE-2015-7263
The SPDY/2 codec in Facebook Proxygen before 2015-11-09 allows remote attackers to conduct hijacking attacks and bypass ACL checks via a crafted host value.
Moxa MXview 2.8 Private Key Disclosure
Moxa MXview version 2.8 suffers from a remote private key disclosure vulnerability.
Shadow Brokers Release More Alleged Exploits
Payday Lender Wonga Confirms Data Breach
Hackers Set Off 156 Dallas Tornado Sirens Over A Dozen Times
iCloud Extortion Racket Was A Sham
LastPass Remote Code Execution
LastPass allows global properties to be modified across isolated worlds allowing for remote code execution.
Xen memory_exchange() Guest Breakout
Xen suffers from a broken check in memory_exchange() that permits a PV guest breakout.
MacOS/iOS fsevents Device Double-Free
The MacOS/iOS kernel suffers from double free due to bad locking in fsevents device.