CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Month: July 2023
LockBit 3.0 Ransomware Victim: cityserve-mech[.]co[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: obeidpartners[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Rockwell Automation ThinManager ThinServer directory traversal | CVE-2023-2913
NAME__________Rockwell Automation ThinManager ThinServer directory traversalPlatforms Affected:Rockwell Automation ThinManager ThinServerRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Rockwell Automation ThinManager ThinServer could allow a remote...
WP-FB-AutoConnect plugin for WordPress cross-site request forgery | CVE-2023-37974
NAME__________WP-FB-AutoConnect plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP-FB-AutoConnect Plugin for WordPress 4.6.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP-FB-AutoConnect plugin for WordPress is...
TOTOLINK CP300+ denial of service | CVE-2023-34669
NAME__________TOTOLINK CP300+ denial of servicePlatforms Affected:TOTOLINK CP300+ 5.2cu.7594_B20200910Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________TOTOLINK CP300+ is vulnerable to a denial...
Atlas Business Directory Listing cross-site scripting | CVE-2023-3756
NAME__________Atlas Business Directory Listing cross-site scriptingPlatforms Affected:Creativeitem Atlas Business Directory Listing 2.13Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Atlas Business Directory Listing is vulnerable...
Progress Chef Infra Server information disclosure | CVE-2023-28864
NAME__________Progress Chef Infra Server information disclosurePlatforms Affected:Progress Chef Chef Infra Server 15.6.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Progress Chef Infra Server could allow...
Veritas InfoScale Operations Manager (VIOM) file upload | CVE-2023-38404
NAME__________Veritas InfoScale Operations Manager (VIOM) file uploadPlatforms Affected:Veritas InfoScale Operations Manager 8.0 Veritas InfoScale Operations Manager 7.0Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Veritas...
Oracle MySQL Server unspecified |
NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.33Risk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle MySQL Server related to...
Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK unspecified |
NAME__________Oracle GraalVM Enterprise Edition and Oracle GraalVM for JDK unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 21.3.6 Oracle GraalVM Enterprise Edition 22.3.2...
Crestron 3-Series Control Systems denial of service | CVE-2023-38405
NAME__________Crestron 3-Series Control Systems denial of servicePlatforms Affected:Crestron 3-Series Control SystemsRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Crestron 3-Series Control Systems is vulnerable...
Oracle MySQL Server unspecified |
NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 8.0.33Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle MySQL Server related to...
HCL BigFix WebUI information disclosure | CVE-2023-28021
NAME__________HCL BigFix WebUI information disclosurePlatforms Affected:HCL BigFix WebUIRisk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HCL BigFix WebUI could allow a remote attacker to obtain...
Mastery Lms cross-site scripting | CVE-2023-3753
NAME__________Mastery Lms cross-site scriptingPlatforms Affected:Creativeitem Mastery Lms 1.2Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Mastery Lms is vulnerable to cross-site scripting, caused by improper...
Oracle Database Server unspecified | CVE-2023-22052
NAME__________Oracle Database Server unspecifiedPlatforms Affected:Oracle Database Server 19.3 Oracle Database Server 19.19 Oracle Database Server 21.3 Oracle Database Server 21.10Risk...
Oracle Hyperion Workspace unspecified |
NAME__________Oracle Hyperion Workspace unspecifiedPlatforms Affected:Oracle Hyperion Workspace 11.2.13.0.000Risk Level:7.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified vulnerability in Oracle Hyperion Workspace related to the...
Oracle Business Intelligence Enterprise Edition unspecified |
NAME__________Oracle Business Intelligence Enterprise Edition unspecifiedPlatforms Affected:Oracle Business Intelligence Enterprise Edition 7.0.0.0.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified vulnerability in Oracle Business...
Oracle Applications Framework unspecified | CVE-2023-22042
NAME__________Oracle Applications Framework unspecifiedPlatforms Affected:Oracle Applications Framework 12.2.3 Oracle Hyperion Financial Reporting 11.2.13.0.000 Oracle Applications Framework 12.3.12Risk Level:6.1Exploitability:UnprovenConsequences:Other DESCRIPTION__________An unspecified...
Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecified | CVE-2023-22036
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecifiedPlatforms Affected:Oracle GraalVM for JDK 17.0.7 Oracle GraalVM for...
Oracle MySQL Server unspecified |
NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 5.7.42 Oracle MySQL Server 8.0.33Risk Level:5.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle...
Oracle Agile PLM unspecified | CVE-2023-22039
NAME__________Oracle Agile PLM unspecifiedPlatforms Affected:Oracle Agile PLM 9.3.6Risk Level:5.4Exploitability:UnprovenConsequences:Other DESCRIPTION__________An unspecified vulnerability in Oracle Agile PLM related to the WebClient...
Oracle VM VirtualBox unspecified |
NAME__________Oracle VM VirtualBox unspecifiedPlatforms Affected:Oracle VM VirtualBox 6.1.16 Oracle VM VirtualBox 7.0.7Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle...
Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecified | CVE-2023-22044
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK unspecifiedPlatforms Affected:Oracle GraalVM for JDK 17.0.7 Oracle GraalVM for...
