Cobalt Stike Beacon Detected – 1[.]116[.]14[.]99:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: September 2022
Cobalt Stike Beacon Detected – 13[.]112[.]235[.]162:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
NUVOLA: the new Cloud Security tool
nuvola is the new open-source cloud security tool to address the privilege escalation in cloud environments. nuvola is the new...
AjaXplorer cross-site scripting | CVE-2022-40358
NAME AjaXplorer cross-site scripting Platforms Affected:Ajaxplorer Ajaxplorer 4.2.3Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION AjaXplorer is vulnerable to cross-site scripting, caused by improper...
Google Chrome Import code execution | CVE-2022-3311
NAME Google Chrome Import code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Mist command execution | CVE-2022-39245
NAME Mist command execution Platforms Affected:Mist Mist 0.9.4Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mist could allow a local attacker to execute arbitrary...
Bifrost security bypass | CVE-2022-39219
NAME Bifrost security bypass Platforms Affected:Bifrost Bifrost 1.8.6-releaseRisk Level:8.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Bifrost could allow a remote authenticated attacker to bypass...
Google Chrome ChromeOS Notifications code execution | CVE-2022-3318
NAME Google Chrome ChromeOS Notifications code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Tenda i9 command execution | CVE-2022-40100
NAME Tenda i9 command execution Platforms Affected:Tenda i9 1.0.0.8(3828)Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Tenda i9 could allow a remote attacker to...
Google Chrome Media code execution | CVE-2022-3307
NAME Google Chrome Media code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Survey code execution | CVE-2022-3305
NAME Google Chrome Survey code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Assistant code execution | CVE-2022-3309
NAME Google Chrome Assistant code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
NuProcess command execution | CVE-2022-39243
NAME NuProcess command execution Platforms Affected:NuProcess NuProcess 2.0.4Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION NuProcess could allow a local attacker to execute arbitrary...
Google Chrome Survey code execution | CVE-2022-3306
NAME Google Chrome Survey code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Netgear N300 wireless router buffer overflow | CVE-2022-31937
NAME Netgear N300 wireless router buffer overflow Platforms Affected:NETGEAR N300 Wireless Router WNR2000 V4 1.0.0.70Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Netgear N300...
Google Chrome Blink code execution | CVE-2022-3315
NAME Google Chrome Blink code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome CSS code execution | CVE-2022-3304
NAME Google Chrome CSS code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Logging code execution | CVE-2022-3314
NAME Google Chrome Logging code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Vtiger CRM cross-site scripting | CVE-2022-38335
NAME Vtiger CRM cross-site scripting Platforms Affected:Vtiger Vtiger CRM 5.4.0 Vtiger Vtiger CRM 5.3.0 Vtiger Vtiger CRM 6.0.0 Vtiger Vtiger...
Meta dismantled the largest Russian network since the war in Ukraine began
Meta dismantled a network of Facebook and Instagram accounts spreading disinformation across European countries. Meta announced to have taken down...
Daily Vulnerability Trends: Wed Sep 28 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-28282 No description provided CVE-2022-30206Windows Print Spooler Elevation of Privilege Vulnerability. This...
Cobalt Stike Beacon Detected – 93[.]185[.]166[.]21:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 110[.]42[.]196[.]11:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]105[.]201[.]145:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
