Microsoft SharePoint Server code execution | CVE-2022-30157
NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Enterprise Server 2013 SP1 Microsoft SharePoint...
Month: June 2022
Microsoft Windows LDAP code execution | CVE-2022-30161
NAME Microsoft Windows LDAP code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server...
SAP NetWeaver and ABAP Platform command execution | CVE-2022-27668
NAME SAP NetWeaver and ABAP Platform command execution Platforms Affected:SAP NetWeaver ABAP Platform KRNL64NUC 7.49 SAP NetWeaver ABAP Platform KRNL64UC...
Kik Messenger for Android spoofing |
NAME Kik Messenger for Android spoofing Platforms Affected:Kik Messenger for AndroidRisk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Kik Messenger for Android...
Microsoft Edge (Chromium-based) code execution | CVE-2022-22021
NAME Microsoft Edge (Chromium-based) code execution Platforms Affected:Microsoft Edge (Chromium-based)Risk Level:8.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Microsoft Edge (Chromium-based) could allow a remote...
Johnson Controls Metasys ADS ADX OAS Servers information disclosure | CVE-2022-21935
NAME Johnson Controls Metasys ADS ADX OAS Servers information disclosure Platforms Affected:Johnson Controls Metasys ADS/ADX/OAS 10 Johnson Controls Metasys ADS/ADX/OAS...
Microsoft Windows Kerberos privilege escalation | CVE-2022-30165
NAME Microsoft Windows Kerberos privilege escalation Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows 7 SP1 x32 Microsoft Windows...
Microsoft Windows Kerberos security bypass | CVE-2022-30164
NAME Microsoft Windows Kerberos security bypass Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows 8.1 x32 Microsoft Windows 8.1 x64 Microsoft...
Johnson Controls Metasys ADS ADX OAS Servers cross-site scripting | CVE-2022-21937
NAME Johnson Controls Metasys ADS ADX OAS Servers cross-site scripting Platforms Affected:Johnson Controls Metasys ADS/ADX/OAS 10 Johnson Controls Metasys ADS/ADX/OAS...
HP LaserJet Professional M1210 MFP Series system root path privilege escalation |
NAME HP LaserJet Professional M1210 MFP Series system root path privilege escalation Platforms Affected:HP LaserJet Professional M1210 MFP Series 20180815_1Risk...
Apache Flume code execution | CVE-2022-25167
NAME Apache Flume code execution Platforms Affected:Apache Flume 1.4.0 Apache Flume 1.5.0 Apache Flume 1.6.0 Apache Flume 1.7.0 Apache Flume...
Microsoft Windows Network File System code execution | CVE-2022-30136
NAME Microsoft Windows Network File System code execution Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows 8.1 x32 Microsoft Windows 8.1...
Microsoft Windows Lightweight Directory Access Protocol (LDAP) code execution | CVE-2022-30153
NAME Microsoft Windows Lightweight Directory Access Protocol (LDAP) code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1...
Microsoft SharePoint Server code execution | CVE-2022-30158
NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Server 2013 SP1 Microsoft SharePoint Foundation 2013 SP1 Microsoft SharePoint Enterprise...
Johnson Controls Metasys ADS ADX OAS Servers cross-site scripting | CVE-2022-21938
NAME Johnson Controls Metasys ADS ADX OAS Servers cross-site scripting Platforms Affected:Johnson Controls Metasys ADS/ADX/OAS 10 Johnson Controls Metasys ADS/ADX/OAS...
Daily Vulnerability Trends: Wed Jun 15 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-29847In Progress Ipswitch WhatsUp Gold 21.0.0 through 21.1.1, and 22.0.0, it is...
LockBit 2.0 Ransomware Victim: medcoenergi[.]com
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 2.0 Ransomware Victim: genusplc[.]com
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
LockBit 2.0 Ransomware Victim: https://www[.]dgi[.]gouv[.]ml/
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 2.0 Ransomware Victim: gruppowasteitalia[.]it
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
CISA: SAP Releases June 2022 Security Updates
SAP Releases June 2022 Security Updates SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could...
A flaw in Zimbra email suite allows stealing login credentials of the users
A high-severity vulnerability in the Zimbra email suite could be exploited by an unauthenticated attacker to steal login credentials of...
