Month: May 2022

Galleon NTS-6002-GPS command execution | CVE-2022-27224

May 11, 2022

NAME Galleon NTS-6002-GPS command execution Platforms Affected:Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Galleon NTS-6002-GPS could allow a remote authenticated...

QNAP QTS, QuTS hero, and QuTScloud command execution | CVE-2021-44051

May 11, 2022

NAME QNAP QTS, QuTS hero, and QuTScloud command execution Platforms Affected:QNAP QTS QNAP QuTS hero QNAP QuTScloudRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...

Magnitude Simba Amazon Athena JDBC Driver code execution | CVE-2022-30239

May 11, 2022

NAME Magnitude Simba Amazon Athena JDBC Driver code execution Platforms Affected:Magnitude Simba Amazon Athena JDBC Driver 2.0.25 Magnitude Simba Amazon...

Google Chrome for Android Sharesheet code execution | CVE-2022-1633

May 11, 2022

NAME Google Chrome for Android Sharesheet code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...

Google Chrome for Android Sharing code execution | CVE-2022-1640

May 11, 2022

NAME Google Chrome for Android Sharing code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...

Google Chrome for Android ANGLE code execution | CVE-2022-1639

May 11, 2022

NAME Google Chrome for Android ANGLE code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...

Solana rBPF security bypass | CVE-2022-23066

May 11, 2022

NAME Solana rBPF security bypass Platforms Affected:Solana rBPF 0.2.26 Solana rBPF 0.2.27Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Solana rBPF could allow a...

Microsoft Windows LDAP code execution | CVE-2022-29128

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...

Microsoft SharePoint Server code execution | CVE-2022-29108

May 11, 2022

NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Server 2019 Microsoft SharePoint Server Subscription...

Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-21972

May 11, 2022

NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft...

Microsoft Windows LDAP code execution | CVE-2022-22014

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...

Intel Processors privilege escalation | CVE-2021-0190

May 11, 2022

NAME Intel Processors privilege escalation Platforms Affected:Intel Xeon Processor E5 v4 Family Intel Core X-series ProcessorsRisk Level:8.2Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Intel...

Microsoft Windows Cluster Shared Volume (CSV) privilege escalation | CVE-2022-26932

May 11, 2022

NAME Microsoft Windows Cluster Shared Volume (CSV) privilege escalation Platforms Affected:Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows...

Microsoft Windows spoofing | CVE-2022-26925

May 11, 2022

NAME Microsoft Windows spoofing Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1...

Intel Processors privilege escalation | CVE-2021-33123

May 11, 2022

NAME Intel Processors privilege escalation Platforms Affected:Intel Xeon Processor D Family Intel Xeon Processor E5 v4 Family Intel Xeon Processor...

Microsoft Windows LDAP code execution | CVE-2022-22013

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...

Intel Processors privilege escalation | CVE-2021-0153

May 11, 2022

Microsoft Windows LDAP code execution | CVE-2022-29137

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...

Microsoft Windows LDAP code execution | CVE-2022-29130

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...

Microsoft Exchange Server privilege escalation | CVE-2022-21978

May 11, 2022

NAME Microsoft Exchange Server privilege escalation Platforms Affected:Microsoft Exchange Server 2013 CU23 Microsoft Exchange Server 2016 CU22 Microsoft Exchange Server...

Microsoft Windows LDAP code execution | CVE-2022-29131

May 11, 2022

NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows...

Microsoft Visual Studio code execution | CVE-2022-30129

May 11, 2022

NAME Microsoft Visual Studio code execution Platforms Affected:Microsoft Visual Studio CodeRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Microsoft Visual Studio could allow a...

Microsoft WindowsNetwork File System code execution | CVE-2022-26937

May 11, 2022

NAME Microsoft WindowsNetwork File System code execution Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server...

Linux Kernel code execution | CVE-2022-1652

May 11, 2022

NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.17.5Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Linux Kernel could allow a local attacker to...

Month: May 2022

Galleon NTS-6002-GPS command execution | CVE-2022-27224

QNAP QTS, QuTS hero, and QuTScloud command execution | CVE-2021-44051

Magnitude Simba Amazon Athena JDBC Driver code execution | CVE-2022-30239

Google Chrome for Android Sharesheet code execution | CVE-2022-1633

Google Chrome for Android Sharing code execution | CVE-2022-1640

Google Chrome for Android ANGLE code execution | CVE-2022-1639

Solana rBPF security bypass | CVE-2022-23066

Microsoft Windows LDAP code execution | CVE-2022-29128

Microsoft SharePoint Server code execution | CVE-2022-29108

Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-21972

Microsoft Windows LDAP code execution | CVE-2022-22014

Intel Processors privilege escalation | CVE-2021-0190

Microsoft Windows Cluster Shared Volume (CSV) privilege escalation | CVE-2022-26932

Microsoft Windows spoofing | CVE-2022-26925

Intel Processors privilege escalation | CVE-2021-33123

Microsoft Windows LDAP code execution | CVE-2022-22013

Intel Processors privilege escalation | CVE-2021-0153

Microsoft Windows LDAP code execution | CVE-2022-29137

Microsoft Windows LDAP code execution | CVE-2022-29130

Microsoft Exchange Server privilege escalation | CVE-2022-21978

Microsoft Windows LDAP code execution | CVE-2022-29131

Microsoft Visual Studio code execution | CVE-2022-30129

Microsoft WindowsNetwork File System code execution | CVE-2022-26937

Linux Kernel code execution | CVE-2022-1652

[HUNTERS] – Ransomware Victim: A&O IT Group

[RANSOMHUB] – Ransomware Victim: www[.]gob[.]mx

[EVEREST] – Ransomware Victim: Bio-Clima Service Srl

[FOG] – Ransomware Victim: Vector Transport (vectortransport[.]com)

[EVEREST] – Ransomware Victim: A Sensitive Touch Home Health;Alphastar Home Health Care;Heart of Texas Home Healthcare Se

You may have missed