Month: October 2023

Juniper Networks Junos OS denial of service | CVE-2023-36841

October 12, 2023

NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks MX SeriesRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Juniper Networks...

Juniper Networks Junos OS denial of service | CVE-2023-44188

October 12, 2023

NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OS 20.4 Juniper Networks Junos OS 21.1 Juniper Networks Junos...

Juniper Networks Junos OS and Junos OS Evolved privilege escalation | CVE-2023-44201

October 12, 2023

NAME__________Juniper Networks Junos OS and Junos OS Evolved privilege escalationPlatforms Affected:Juniper Networks Junos OS 21.1 Juniper Networks Junos OS 21.2...

Juniper Networks Junos OS denial of service | CVE-2023-22392

October 12, 2023

NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OSRisk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Juniper Networks Junos OS is vulnerable...

Juniper Networks Junos OS Evolved security bypass | CVE-2023-44196

October 12, 2023

NAME__________Juniper Networks Junos OS Evolved security bypassPlatforms Affected:Juniper Networks Junos OS Evolved 21.1-EVO Juniper Networks Junos OS Evolved 21.2-EVO Juniper...

Juniper Networks Junos OS denial of service | CVE-2023-44181

October 12, 2023

NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks QFX5K series platformsRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Juniper...

WP Forms Puzzle Captcha Plugin for WordPress cross-site request forgery | CVE-2023-44997

October 12, 2023

NAME__________WP Forms Puzzle Captcha Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP Forms Puzzle Captcha Plugin for WordPress 4.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain...

Juniper Networks Junos OS denial of service | CVE-2023-36843

October 12, 2023

NAME__________Juniper Networks Junos OS denial of servicePlatforms Affected:Juniper Networks Junos OSRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Juniper Networks Junos OS is vulnerable...

WooCommerce Login Redirect Plugin for WordPress cross-site request forgery | CVE-2023-44995

October 12, 2023

NAME__________WooCommerce Login Redirect Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WooCommerce Login Redirect Plugin for WordPress 2.2.4Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WooCommerce...

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44178

October 12, 2023

NAME__________Juniper Networks Junos OS and Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks Junos OS EvolvedRisk...

Juniper Networks Junos OS on MX Series denial of service | CVE-2023-44199

October 12, 2023

NAME__________Juniper Networks Junos OS on MX Series denial of servicePlatforms Affected:Juniper Networks MX Series Juniper Networks Junos OS 21.1 Juniper...

Juniper Networks Junos OS Evolved denial of service | CVE-2023-44190

October 12, 2023

NAME__________Juniper Networks Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS Evolved 22.1 Juniper Networks Junos OS Evolved 22.2...

Peplink Surf SOHO HW1 command execution | CVE-2023-34356

October 12, 2023

NAME__________Peplink Surf SOHO HW1 command executionPlatforms Affected:Peplink Surf SOHO HW1 6.3.5Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Peplink Surf SOHO HW1 could allow a...

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44177

October 12, 2023

NAME__________Juniper Networks Junos OS and Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks Junos OS EvolvedRisk...

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44197

October 12, 2023

NAME__________Juniper Networks Junos OS and Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS 21.1 Juniper Networks Junos OS...

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44184

October 12, 2023

NAME__________Juniper Networks Junos OS and Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks Junos OS EvolvedRisk...

Juniper Networks Junos OS Evolved security bypass | CVE-2023-44202

October 12, 2023

NAME__________Juniper Networks Junos OS Evolved security bypassPlatforms Affected:Juniper Networks Junos OS Evolved 21.1-EVO Juniper Networks Junos OS Evolved 21.2-EVO Juniper...

Juniper Networks Junos OS denial of service | CVE-2023-44183

October 12, 2023

8 Base Ransomware Victim: Comtek Advanced Structures, a Latecoere Company

October 12, 2023

NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...

8 Base Ransomware Victim: KTUA Landscape Architecture and Planning

October 12, 2023

NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...

Daily Vulnerability Trends: Thu Oct 12 2023

October 12, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-38545 No description provided CVE-2023-43641libcue provides an API for parsing and extracting...

Simpson Manufacturing shuts down IT systems after cyberattack

October 12, 2023

Simpson Manufacturing disclosed via a SEC 8-K filing a cybersecurity incident that has caused disruptions in its operations, which are...

LinkedIn Smart Links attacks return to target Microsoft accounts

October 12, 2023

Hackers are once again abusing LinkedIn Smart Links in phishing attacks to bypass protection measures and evade detection in attempts...

New WordPress backdoor creates rogue admin to hijack websites

October 12, 2023

A new malware has been posing as a legitimate caching plugin to target WordPress sites, allowing threat actors to create...

Month: October 2023

Juniper Networks Junos OS denial of service | CVE-2023-36841

Juniper Networks Junos OS denial of service | CVE-2023-44188

Juniper Networks Junos OS and Junos OS Evolved privilege escalation | CVE-2023-44201

Juniper Networks Junos OS denial of service | CVE-2023-22392

Juniper Networks Junos OS Evolved security bypass | CVE-2023-44196

Juniper Networks Junos OS denial of service | CVE-2023-44181

WP Forms Puzzle Captcha Plugin for WordPress cross-site request forgery | CVE-2023-44997

Juniper Networks Junos OS denial of service | CVE-2023-36843

WooCommerce Login Redirect Plugin for WordPress cross-site request forgery | CVE-2023-44995

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44178

Juniper Networks Junos OS on MX Series denial of service | CVE-2023-44199

Juniper Networks Junos OS Evolved denial of service | CVE-2023-44190

Peplink Surf SOHO HW1 command execution | CVE-2023-34356

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44177

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44197

Juniper Networks Junos OS and Junos OS Evolved denial of service | CVE-2023-44184

Juniper Networks Junos OS Evolved security bypass | CVE-2023-44202

Juniper Networks Junos OS denial of service | CVE-2023-44183

8 Base Ransomware Victim: Comtek Advanced Structures, a Latecoere Company

8 Base Ransomware Victim: KTUA Landscape Architecture and Planning

Daily Vulnerability Trends: Thu Oct 12 2023

Simpson Manufacturing shuts down IT systems after cyberattack

LinkedIn Smart Links attacks return to target Microsoft accounts

New WordPress backdoor creates rogue admin to hijack websites

CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

CISA: CISA Releases Four Industrial Control Systems Advisories

CISA: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: Foreign Threat Actor Conducting Large-Scale Spearphishing Campaign with RDP Attachments

You may have missed