Year: 2022

It’s business as usual for REvil ransomware

May 5, 2022

After the FBS arrested 14 of its members in January, and a subsequent lull in action, the REvil ransomware gang...

World Password Day: Brushing up on the basics

May 5, 2022

World Password Day is today, reminding us of the value of solid passwords, and good password practices generally. There are...

Bug Bounty

BugCrowd Bug Bounty Disclosure: P3 – XSS reflected – https://www.indeed.com/hire/employer-confirmation [co, hl] – By CGuillaume

May 5, 2022

The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...

F5 warns its customers of tens of flaws in its products

May 5, 2022

Cybersecurity provider F5 released security patches to address tens of vulnerabilities affecting its products. Security and application delivery solutions provider...

cURL security update-CVE-2022-27776

May 5, 2022

NAME cURL - cURL Platforms Affected:cURLRisk Level:lowCVE Type:Insufficiently protected credentials DESCRIPTION CVE-2022-27776 is an insufficiently protected credentials vulnerability impacting cURL...

Multiple Aruba switches buffer overflow | CVE-2022-23676

May 5, 2022

NAME Multiple Aruba switches buffer overflow Platforms Affected:Aruba 5400R Series Aruba 3810 Series Aruba 2920 Series Aruba 2930F Series Aruba...

Ruijie RG-EW Series Routers code execution | CVE-2021-43162

May 5, 2022

NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...

Multiple Avaya switches buffer overflow | CVE-2022-29860

May 5, 2022

NAME Multiple Avaya switches buffer overflow Platforms Affected:Avaya ERS3500 Series Avaya ERS3600 Series Avaya ERS4900 Series Avaya ERS5900 SeriesRisk Level:9.8Exploitability:UnprovenConsequences:Gain...

Ruijie RG-EW Series Routers code execution | CVE-2021-43159

May 5, 2022

NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...

Multiple Aruba switches code execution | CVE-2022-23677

May 5, 2022

NAME Multiple Aruba switches code execution Platforms Affected:Aruba 5400R Series Aruba 3810 Series Aruba 2920 Series Aruba 2930F Series Aruba...

Ruijie RG-EW Series Routers code execution | CVE-2021-43164

May 5, 2022

Cisco Enterprise NFV Infrastructure Software command execution | CVE-2022-20779

May 5, 2022

NAME Cisco Enterprise NFV Infrastructure Software command execution Platforms Affected:Cisco Enterprise NFV Infrastructure Software (NFVIS)Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Cisco Enterprise...

Ruijie RG-EW Series Routers code execution | CVE-2021-43163

May 5, 2022

F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting | CVE-2022-28716

May 5, 2022

NAME F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting Platforms Affected:F5 BIG-IP (AFM) 15.1.0 F5 BIG-IP (PEM) 15.1.0 F5 BIG-IP (PEM)...

Ruijie RG-EW Series Routers code execution | CVE-2021-43160

May 5, 2022

F5 BIG-IP cross-site scripting | CVE-2022-28707

May 5, 2022

NAME F5 BIG-IP cross-site scripting Platforms Affected:F5 BIG-IP 15.1.0 F5 BIG-IP 14.1.0 F5 BIG-IP 14.1.4 F5 BIG-IP 16.1.0 F5 BIG-IP...

Ruijie RG-EW Series Routers code execution | CVE-2021-43161

May 5, 2022

Cisco Enterprise NFV Infrastructure Software security bypass | CVE-2022-20777

May 5, 2022

NAME Cisco Enterprise NFV Infrastructure Software security bypass Platforms Affected:Cisco Enterprise NFV Infrastructure Software (NFVIS)Risk Level:9.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Cisco Enterprise...

MediaTek Android privilege escalation | CVE-2022-20111

May 5, 2022

NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...

MediaTek Android privilege escalation | CVE-2022-20109

May 5, 2022

F5 BIG-IP Guided Configuration and APM cross-site scripting | CVE-2022-27230

May 5, 2022

NAME F5 BIG-IP Guided Configuration and APM cross-site scripting Platforms Affected:F5 BIG-IP (APM) 14.1.0 F5 BIG-IP (APM) 15.1.0 F5 BIG-IP...

F5 BIG-IP security bypass | CVE-2022-27806

May 5, 2022

NAME F5 BIG-IP security bypass Platforms Affected:F5 BIG-IP (Advanced WAF) 14.1.0 F5 BIG-IP (Advanced WAF) 15.1.0 F5 BIG-IP (Advanced WAF)...

MediaTek Android privilege escalation | CVE-2022-21743

May 5, 2022

F5 BIG-IP command execution | CVE-2022-1388

May 5, 2022

NAME F5 BIG-IP command execution Platforms Affected:F5 Big-IP 4.2 F5 BIG-IP 12.1.0 F5 BIG-IP 13.1.0 F5 BIG-IP 14.1.0 F5 BIG-IP...

Year: 2022

It’s business as usual for REvil ransomware

World Password Day: Brushing up on the basics

BugCrowd Bug Bounty Disclosure: P3 – XSS reflected – https://www.indeed.com/hire/employer-confirmation [co, hl] – By CGuillaume

F5 warns its customers of tens of flaws in its products

cURL security update-CVE-2022-27776

Multiple Aruba switches buffer overflow | CVE-2022-23676

Ruijie RG-EW Series Routers code execution | CVE-2021-43162

Multiple Avaya switches buffer overflow | CVE-2022-29860

Ruijie RG-EW Series Routers code execution | CVE-2021-43159

Multiple Aruba switches code execution | CVE-2022-23677

Ruijie RG-EW Series Routers code execution | CVE-2021-43164

Cisco Enterprise NFV Infrastructure Software command execution | CVE-2022-20779

Ruijie RG-EW Series Routers code execution | CVE-2021-43163

F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting | CVE-2022-28716

Ruijie RG-EW Series Routers code execution | CVE-2021-43160

F5 BIG-IP cross-site scripting | CVE-2022-28707

Ruijie RG-EW Series Routers code execution | CVE-2021-43161

Cisco Enterprise NFV Infrastructure Software security bypass | CVE-2022-20777

MediaTek Android privilege escalation | CVE-2022-20111

MediaTek Android privilege escalation | CVE-2022-20109

F5 BIG-IP Guided Configuration and APM cross-site scripting | CVE-2022-27230

F5 BIG-IP security bypass | CVE-2022-27806

MediaTek Android privilege escalation | CVE-2022-21743

F5 BIG-IP command execution | CVE-2022-1388

CVE Alert: CVE-2025-23774

CVE Alert: CVE-2025-23781

CVE Alert: CVE-2025-23769

CVE Alert: CVE-2025-23768

CVE Alert: CVE-2025-23770

You may have missed