Cobalt Stike Beacon Detected – 185[.]203[.]117[.]140:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: March 2022
Cobalt Stike Beacon Detected – 69[.]49[.]235[.]167:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 66[.]42[.]37[.]112:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Four SMB cybersecurity practices during geopolitical upheaval
Russia’s continued, weeklong invasion of Ukraine has altered the landscape of cybersecurity threats facing organizations both near and far from...
CodeIgniter4 command execution | CVE-2022-24711
NAME CodeIgniter4 command execution Platforms Affected:CodeIgniter4 CodeIgniter4 4.1.7 CodeIgniter4 CodeIgniter4 4.1.8Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CodeIgniter4 could allow a remote attacker...
MithrilJS mithril.js code execution |
NAME MithrilJS mithril.js code execution Platforms Affected:Node.js Node.jsRisk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MithrilJS mithril.js could allow a remote attacker to execute...
AllTube Download server-side request forgery | CVE-2022-0768
NAME AllTube Download server-side request forgery Platforms Affected:AllTube Download AllTube Download 3.0.0 AllTube Download AllTube Download 3.0.1Risk Level:8.6Exploitability:Proof of ConceptConsequences:Gain...
Google Chrome MediaStream code execution | CVE-2022-0798
NAME Google Chrome MediaStream code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
VMware Tanzu Spring Cloud Gateway code execution | CVE-2022-22947
NAME VMware Tanzu Spring Cloud Gateway code execution Platforms Affected:VMware Tanzu Spring Cloud Gateway 3.1.0 VMware Tanzu Spring Cloud Gateway...
Rufus code execution |
NAME Rufus code execution Platforms Affected:Rufus Rufus 3.17.1846Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Rufus could allow a local attacker to execute arbitrary...
Google Chrome Media code execution | CVE-2022-0796
NAME Google Chrome Media code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Cisco Expressway Series file overwrite | CVE-2022-20754
NAME Cisco Expressway Series file overwrite Platforms Affected:Cisco Telepresence Video Communication Server Cisco Expressway SeriesRisk Level:9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Cisco Expressway...
Obyte Wallet cross-site scripting | CVE-2022-25642
NAME Obyte Wallet cross-site scripting Platforms Affected:Obyte Obyte Wallet 3.4.0Risk Level:10Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION Obyte Wallet is vulnerable to cross-site scripting,...
LanSweeper SQL injection | CVE-2022-21234
NAME LanSweeper SQL injection Platforms Affected:Lansweeper Lansweeper 9.1.20.2Risk Level:9.1Exploitability:HighConsequences:Data Manipulation DESCRIPTION LanSweeper is vulnerable to SQL injection. A remote authenticated...
Google Chrome Omnibox code execution | CVE-2022-0791
NAME Google Chrome Omnibox code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Prowise code execution |
NAME Prowise code execution Platforms Affected:Prowise Reflect 1.0.9Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Prowise could allow a remote attacker to...
LanSweeper cross-site scripting | CVE-2022-21145
NAME LanSweeper cross-site scripting Platforms Affected:Lansweeper Lansweeper 9.1.20.2Risk Level:9.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION LanSweeper is vulnerable to cross-site scripting, caused by improper...
Node.js accesslog module code execution | CVE-2022-25760
NAME Node.js accesslog module code execution Platforms Affected:Node.js accesslog 0.0.2Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Node.js accesslog module could allow...
image_processing code execution | CVE-2022-24720
NAME image_processing code execution Platforms Affected:image_processing image_processing 1.12.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION image_processing could allow a remote attacker to execute arbitrary...
Google Chrome WebShare code execution | CVE-2022-0794
NAME Google Chrome WebShare code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Browser Switcher code execution | CVE-2022-0805
NAME Google Chrome Browser Switcher code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
LanSweeper SQL injection | CVE-2022-22149
NAME LanSweeper SQL injection Platforms Affected:Lansweeper Lansweeper 9.1.20.2Risk Level:9.1Exploitability:HighConsequences:Data Manipulation DESCRIPTION LanSweeper is vulnerable to SQL injection. A remote authenticated...
Google Chrome Chrome OS Shell code execution | CVE-2022-0808
NAME Google Chrome Chrome OS Shell code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a...
Google Chrome Blink Layout code execution | CVE-2022-0795
NAME Google Chrome Blink Layout code execution Platforms Affected:Google Chrome 99Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
