Microsoft Windows TCP/IP code execution | CVE-2022-34718
NAME Microsoft Windows TCP/IP code execution Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows Server 2008 SP2 x64 Microsoft...
Month: September 2022
Zoom On-Premise Meeting Connector MMR information disclosure | CVE-2022-28758
NAME Zoom On-Premise Meeting Connector MMR information disclosure Platforms Affected:Zoom On-Premise Meeting Connector MMR 4.8Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Zoom On-Premise...
Microsoft SharePoint Server code execution | CVE-2022-38008
NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Foundation 2013 SP1 Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Enterprise...
Microsoft Windows ODBC Driver code execution | CVE-2022-34732
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Microsoft Windows Kerberos privilege escalation | CVE-2022-33647
NAME Microsoft Windows Kerberos privilege escalation Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows Server 2008 SP2 x64 Microsoft...
Microsoft Windows Remote Procedure Call Runtime code execution | CVE-2022-35830
NAME Microsoft Windows Remote Procedure Call Runtime code execution Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows Server 2008...
Microsoft Windows ODBC Driver code execution | CVE-2022-34727
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Zoom On-Premise Meeting Connector MMR information disclosure | CVE-2022-28759
NAME Zoom On-Premise Meeting Connector MMR information disclosure Platforms Affected:Zoom On-Premise Meeting Connector MMR 4.8Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Zoom On-Premise...
Kingspan TMS300 CS security bypass | CVE-2022-2757
NAME Kingspan TMS300 CS security bypass Platforms Affected:Kingspan TMS300 CSRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Kingspan TMS300 CS could allow a remote...
Microsoft Windows Internet Key Exchange (IKE) Protocol Extensions code execution | CVE-2022-34721
NAME Microsoft Windows Internet Key Exchange (IKE) Protocol Extensions code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7...
Microsoft Windows OLE DB Provider for SQL Server code execution | CVE-2022-35834
NAME Microsoft Windows OLE DB Provider for SQL Server code execution Platforms Affected:Microsoft Windows Server 2008 SP2 x32 Microsoft Windows...
Microsoft Windows Secure Channel denial of service | CVE-2022-30196
NAME Microsoft Windows Secure Channel denial of service Platforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems...
Microsoft Dynamics 365 (on-premises) code execution | CVE-2022-34700
NAME Microsoft Dynamics 365 (on-premises) code execution Platforms Affected:Microsoft Dynamics 365 (on-premises) 9.0 Microsoft Dynamics 365 (on-premises) 9.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access...
Microsoft SharePoint Server code execution | CVE-2022-37961
NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Foundation 2013 SP1 Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Server...
Microsoft Windows Enterprise App Management Service code execution | CVE-2022-35841
NAME Microsoft Windows Enterprise App Management Service code execution Platforms Affected:Microsoft Windows 10 x32 Microsoft Windows 10 x64 Microsoft Windows...
Microsoft Windows ODBC Driver code execution | CVE-2022-34730
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Microsoft Windows OLE DB Provider for SQL Server code execution | CVE-2022-34731
NAME Microsoft Windows OLE DB Provider for SQL Server code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7...
Twitter former head of security told the Senate of severe security failings by the company
Twitter whistleblower, and former head of security, Peiter Zatko, told the US Congress that the platform ignored his security concerns. Peiter...
Daily Vulnerability Trends: Wed Sep 14 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-40139 No description provided CVE-2022-31474 No description provided CVE-2022-26923Active Directory Domain Services...
Threat actors are actively exploiting a zero-day in WPGateway WordPress plugin
Threat actors are actively exploiting a zero-day vulnerability in the WPGateway premium plugin to target WordPress websites. The Wordfence Threat...
Microsoft September 2022 Patch Tuesday fixed actively exploited zero-day
Microsoft released September 2022 Patch Tuesday security updates to address 64 flaws, including an actively exploited Windows zero-day. Microsoft September...
LockBit 3.0 Ransomware Victim: idealtridon[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tapcocu[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: taxprepandmore[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
