An heap-based buffer overflow vulnerability [CWE-122] in FortiOS, FortiProxy, FortiPAM, FortiSRA and FortiSwitchManager nodejs daemon may allow an authenticated attacker to execute arbitrary code or commands via specifically...
Read More
For a while, clipboard content has been monitored by many infostealers. Purposes can be multiple,...
Read MoreSAP has rolled out security fixes for 13 new security issues, including additional hardening for a maximum-severity bug in SAP NetWeaver AS Java that could result in arbitrary command execution. The vulnerability, tracked as...
Read MoreAn improper authentication vulnerability [CWE-287] in FortiAnalyzer may allow an unauthenticated attacker to obtain information pertaining to the device’s health and status, or cause a denial of service via crafted OFTP...
Read MoreAn Improper Control of Generation of Code (‘Code Injection’) vulnerability [CWE-94] in FortiClientMac may allow an unauthenticated attacker to execute arbitrary code on the victim’s host via tricking the user...
Read More