Month: April 2023

Google Chrome Navigation security bypass | CVE-2023-1822

April 6, 2023

NAME__________Google Chrome Navigation security bypassPlatforms Affected:Google Chrome 112.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security...

Envoy denial of service | CVE-2023-27492

April 6, 2023

NAME__________Envoy denial of servicePlatforms Affected:Risk Level:4.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Envoy is vulnerable to a denial of service, caused by a flaw...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting |

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cynet Client Agent security bypass | CVE-2023-27247

April 6, 2023

NAME__________Cynet Client Agent security bypassPlatforms Affected:Risk Level:4.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cynet Client Agent could allow a local authenticated attacker to bypass security...

Envoy security bypass | CVE-2023-27491

April 6, 2023

NAME__________Envoy security bypassPlatforms Affected:Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Envoy could allow a remote attacker to bypass security restrictions, caused by a flaw...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20147

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Envoy denial of service | CVE-2023-27496

April 6, 2023

NAME__________Envoy denial of servicePlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Envoy is vulnerable to a denial of service, caused by a flaw...

Acuant AsureID Sentinel privilege escalation | CVE-2022-48227

April 6, 2023

NAME__________Acuant AsureID Sentinel privilege escalationPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Acuant AsureID Sentinel could allow a local authenticated attacker to gain elevated...

Cisco Prime Infrastructure and Evolved Programmable Network Manager information disclosure | CVE-2023-20129

April 6, 2023

NAME__________Cisco Prime Infrastructure and Evolved Programmable Network Manager information disclosurePlatforms Affected:Cisco Prime Infrastructure Cisco Evolved Programmable Network ManagerRisk Level:4.9Exploitability:UnprovenConsequences:Obtain Information...

Cisco Unified Contact Center Express cross-site scripting | CVE-2023-20096

April 6, 2023

NAME__________Cisco Unified Contact Center Express cross-site scriptingPlatforms Affected:Cisco Unified Contact Center ExpressRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Unified Contact Center Express is...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20146

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Prime Infrastructure information disclosure | CVE-2023-20127

April 6, 2023

NAME__________Cisco Prime Infrastructure information disclosurePlatforms Affected:Cisco Prime InfrastructureRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco Prime Infrastructure could allow a remote authenticated attacker to...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20145

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20140

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20143

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20138

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Yokogawa CENTUM series information disclosure | CVE-2023-26593

April 6, 2023

NAME__________Yokogawa CENTUM series information disclosurePlatforms Affected:Yokogawa CENTUM CS 1000 Yokogawa CENTUM CS 3000 Yokogawa CENTUM VPRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Yokogawa CENTUM...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20148

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers command execution | CVE-2023-20117

April 6, 2023

NAME__________Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers command executionPlatforms Affected:Cisco RV320 Dual Gigabit WAN VPN Routers...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20139

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Webex Meetings security bypass | CVE-2023-20134

April 6, 2023

NAME__________Cisco Webex Meetings security bypassPlatforms Affected:Cisco Webex MeetingsRisk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cisco Webex Meetings could allow a remote authenticated attacker to...

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20150

April 6, 2023

NAME__________Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scriptingPlatforms Affected:Cisco Small Business RV042 Dual WAN VPN...

Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site request forgery | CVE-2023-20130

April 6, 2023

NAME__________Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site request forgeryPlatforms Affected:Cisco Prime Infrastructure Cisco Evolved Programmable Network ManagerRisk Level:4.3Exploitability:UnprovenConsequences:Gain...

Cisco Webex Meetings cross-site scripting | CVE-2023-20132

April 6, 2023

NAME__________Cisco Webex Meetings cross-site scriptingPlatforms Affected:Cisco Webex MeetingsRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Webex Meetings is vulnerable to cross-site scripting, caused by...

Month: April 2023

Google Chrome Navigation security bypass | CVE-2023-1822

Envoy denial of service | CVE-2023-27492

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting |

Cynet Client Agent security bypass | CVE-2023-27247

Envoy security bypass | CVE-2023-27491

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20147

Envoy denial of service | CVE-2023-27496

Acuant AsureID Sentinel privilege escalation | CVE-2022-48227

Cisco Prime Infrastructure and Evolved Programmable Network Manager information disclosure | CVE-2023-20129

Cisco Unified Contact Center Express cross-site scripting | CVE-2023-20096

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20146

Cisco Prime Infrastructure information disclosure | CVE-2023-20127

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20145

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20140

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20143

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20138

Yokogawa CENTUM series information disclosure | CVE-2023-26593

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20148

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers command execution | CVE-2023-20117

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20139

Cisco Webex Meetings security bypass | CVE-2023-20134

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers cross-site scripting | CVE-2023-20150

Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site request forgery | CVE-2023-20130

Cisco Webex Meetings cross-site scripting | CVE-2023-20132

[INCRANSOM] – Ransomware Victim: Darlington EMS

[INCRANSOM] – Ransomware Victim: Schuck-Gruppe

[APT73] – Ransomware Victim: gureco[.]pl

[APT73] – Ransomware Victim: lgpunjab[.]gov[.]in

[INCRANSOM] – Ransomware Victim: IPE Engwicht

You may have missed