Gradle is a build tool with a focus on build automation and support for multi-language development. This is a collision attack on long IDs (64bits) for PGP keys. Users of dependency verification in Gradle are vulnerable if they use long IDs for PGP keys in a `trusted-key` or `pgp` element in their dependency verification metadata file. The fix is to fail dependency verification if anything but a fingerprint is used in a trust element in dependency verification metadata. The problem is fixed in Gradle 8.0…
Cybereason Endpoint Solutions Cybereason Endpoint Protection Version 20.1.261.0 is affected by an infection using Powershell script calling Ransomware to encrypt the victim machine using a delay between server and sensor communication from Cybereason AV in Windows 10 Machines
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none.
This candidate was in a CNA pool that was not assigned to any issues during 2022.