Vyron Kampourakis

**Name of the Vulnerable Software and Affected Versions** Kaspersky Password Manager versions prior to 24.0.0.427 **Description** The issue is related to the recovery of auto-filled credentials from a memory dump when the Kaspersky Password Manager extension for Google Chrome is used. An attacker must trick a user into visiting a login form of a website with saved credentials, and the KPM extension must autofill these credentials. The attacker must then launch a malware module to steal those specific credentials. **Recommendations** For Kaspersky Password Manager versions prior to 24.0.0.427, update to the latest version as soon as possible to resolve the issue. As a temporary workaround, consider disabling the KPM extension for Google Chrome until the update is applied. Restrict access to sensitive information and avoid using the autofill feature in Google Chrome until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** HUAWEI WS7100-20 Smart WiFi Router (affected versions not specified) **Description** The issue is related to a denial of service vulnerability in the Wi-Fi module. Successful exploitation could cause a denial of service (DoS) condition. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.