The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (CmResourceTypeDevicePrivate entries).

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_LIST registry values (videoprt.sys descriptors).

The Microsoft Windows kernel suffers from a 64-bit pool memory disclosure vulnerability via REG_RESOURCE_REQUIREMENTS_LIST registry values.

Realtek SDK based routers suffer from information disclosure, incorrect access control, insecure password storage, code execution, and incorrectly implemented CAPTCHA vulnerabilities.

Centreon version 19.10.5 suffers from a database credential disclosure vulnerability.

Jira version 8.3.4 suffers from a username enumeration information disclosure vulnerability.

Verodin Director Web Console version 3.5.4.0 remote authenticated password disclosure proof of concept exploit.

LabVantage version 8.3 suffers from an information disclosure vulnerability.

SmartClient version 120 suffers from information disclosure, local file inclusion, remote file upload, and XML external entity injection vulnerabilities.

ManageEngine EventLog Analyzer version 10.0 suffers from an information disclosure vulnerability.

Citrix Gateway versions 11.1, 12.0, and 12.1 suffer from an information disclosure vulnerability.

HP ThinPro versions 7.1, 7.0, 6.2.1, and 6.2 suffer from a local physical access information disclosure vulnerability.

MicroStrategy Intelligence Server and Web version 10.4 suffers from remote code execution, cross site scripting, server-side request forgery, and information disclosure vulnerabilities.

The Swift File Transfer mobile application for ios, blackberry and android suffers from cross site scripting and information disclosure vulnerabilities.

Edimax EW-7438RPn suffers from an information disclosure vulnerability.

File Explorer version 1.4 for iOS suffers from an information disclosure vulnerability.

webERP version 4.15.1 suffers from an unauthenticated backup file disclosure vulnerability.

IRIX suffers from local kernel memory disclosure and denial of service vulnerabilities.

A low impact information disclosure vulnerability in the setuid root xlock binary distributed with Solaris may allow local users to read partial contents of sensitive files. Due to the fact that target files must be in a very specific format, exploitation of this flaw to escalate privileges in a realistic scenario is unlikely.

Avast Anti-Virus versions prior to 19.1.2360 suffer from a local credential disclosure vulnerability.

Apple iPhone 4 with iOS 4.3 (8F190) suffers from a passphrase disclosure vulnerability that allows all local processes access to it.

Vopium for Android and iPhone leaks various data such as your password by passing it in the clear.

TRENDnet TEW-818RDU versions 1 ("ac1900") and 2 ("ac3200") PIN disclosure exploit.

The FLIR Brickstream 3D+ sensor is vulnerable to unauthenticated config download and file disclosure vulnerability when calling the ExportConfig REST API (getConfigExportFile.cgi). This will enable the attacker to disclose sensitive information and help her in authentication bypass, privilege escalation and/or full system access.

An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an information disclosure, resulting in the exposure of confidential information, including, but not limited to, plaintext passwords and SNMP community strings. An attacker can make an authenticated HTTP request, or run the binary, to trigger this vulnerability.

An exploitable information disclosure vulnerability exists in the ACEManager template_load.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a information leak, resulting in the disclosure of internal paths and files. An attacker can make an authenticated HTTP request to trigger this vulnerability.

The Rifatron Intelligent Digital Security System DVR suffers from an unauthenticated and unauthorized live stream disclosure when animate.cgi script is called through Mobile Web Viewer module.

Early reports on the new trade agreement between the US, Mexico and Canada – known as the USMCA – suggest that the US is getting the better end of the deal. But what are the implications of the new rules of origin?

Statkraft announces it has decided to start construction of the 51.6-MW Los Lagos hydropower plant in Chile. The construction is planned to commence in August and completion is scheduled for second half of 2022.

Nigerian distributed utility company, Arnergy, announced it has raised $9 Million in a Series A round of funding led by Breakthrough Energy Ventures with participation from the Norwegian Investment Fund for Developing Countries (Norfund), EDFI ElectriFI and All On.

Lekela announced that it has reached financial close on its first wind project in Egypt, West Bakr Wind. Construction will begin shortly, delivering 250 MW of clean, reliable power at a highly competitive price.

The U.K. could be producing electricity from a geothermal plant for the first time early next decade after drilling at a site in southwest England showed it could become a viable part of the renewable energy mix.

In late February, Hawaiian Electric Companies announced that they have achieved a consolidated 27 percent renewable portfolio standard in 2018, even with the loss of Hawaii Island’s geothermal resource for most of the year following the Kilauea volcanic eruption. Hawaii has a goal of reaching 100 percent renewable energy by 2045.

A year ago, Tesla Inc. lost its throne as king of the U.S. rooftop solar business to Sunrun Inc. Now, it may get relegated to third place.

Yesterday another milestone was reached in California’s march toward a 100 percent renewable energy mandate with the passing of SB100 by the Assembly. The bill will require the state to receive 50 percent of its electricity from renewables by 2026; 60 percent by 2030 and 100 percent by 2045. The current law requires the state to get 50 percent of its electricity from renewables by 2030.

European Union negotiators are endorsing an accelerated overhaul of the bloc’s carbon market after the price of emission rights fell to levels that fail to deter polluters.

The United States and China on Sept. 3 formally joined the Paris Agreement in a ceremony in Hangzhou, China, ahead of the G20 Summit. President Obama and President Xi both deposited their country’s official instrument with United Nations Secretary, General Ban-Ki Moon.

Chile's Schwager Energy and China-based Shenyang Yuanda Commercial & Investment Co. signed a memorandum of understanding on Nov. 3 to build the 3-MW Los Pinos run-of-the-river hydroelectric plant in southern Chile's Lagos region, according to BN Americas.
 

Last Friday evening in Surprise, Arizona a storage facility owned by Arizona Public Service (APS) exploded, injuring four firefighters. Reporter for azfamily.com, Maria Hechanova, visited the scene yesterday and reported that the explosion happened while four hazmat firefighters from Peoria were working to extinguish a battery fire at the facility.

Two companies have come up with a potential solution to help mitigate power outages in California. Recent state utility proposals have called for new measures that would allow California utilities to increase the quantity and duration of Public Safety Power Shutoffs (PSPS) as part of their wildfire mitigation plans. These PSPS, while important, can have severe impacts on businesses, hospitals and others who need reliable power.

Nigerian distributed utility company, Arnergy, announced it has raised $9 Million in a Series A round of funding led by Breakthrough Energy Ventures with participation from the Norwegian Investment Fund for Developing Countries (Norfund), EDFI ElectriFI and All On.

Iceland is moving closer to plugging European homes into the volcanic island nation’s geothermal and hydropower reserves via what would be the world’s longest power cable, according to the country’s largest energy producer.

European Union negotiators are endorsing an accelerated overhaul of the bloc’s carbon market after the price of emission rights fell to levels that fail to deter polluters.