cybersecurity

5900 readers
37 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Enjoy!

founded 2 years ago
MODERATORS
876
877
878
879
880
881
 
 

Hello /c/cybersecurity! I wanted to take the temperature on weekly threads (i.e. Mentorship Monday, Training Tuesday, etc...) and get an idea of whether people like these and want to see them continue. I've noticed a drop in engagement with the threads and didn't want to spam the feed if people weren't interested. If you liked them and would like to continue to see them each week, please reply with a comment or an upvote. Cheers!

882
883
 
 

cross-posted from: https://infosec.pub/post/2466014

This is my first write-up, on a vulnerability I discovered in iTerm2 (RCE). Would love to hear opinions on this. I tried to make the writing engaging.

884
885
886
887
888
889
890
 
 

Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.

891
 
 

Bit of a different one. I have some credits for audible and I am looking for your favourite books on the subject. Fiction or non fiction it doesn't really matter.

Normally I'd google it and slap "reddit" on the end, but I thought I'd give lemmy a chance to show me some answers

892
893
 
 

Weekly thread to discuss industry certifications, trainings and other courses/learning. Ask questions, share your experiences and help others!

894
 
 

Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!

895
 
 

Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.

896
 
 

Weekly thread to discuss industry certifications, trainings and other courses/learning. Ask questions, share your experiences and help others!

897
 
 

Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!

898
28
submitted 2 years ago* (last edited 2 years ago) by tedu@azorius.net to c/cybersecurity
 
 

It was obvious already before that NVD really does not try very hard to actually understand or figure out the problem they grade. In this case it is quite impossible for me to understand how they could come up with this severity level. It’s like they saw “integer overflow” and figure that wow, yeah that is the most horrible flaw we can imagine, but clearly nobody at NVD engaged their brains nor looked at the “vulnerable” code or the patch that fixed the bug. Anyone that looks can see that this is not a security problem.

899
900
view more: ‹ prev next ›