NAME__________Microsoft SharePoint Server code executionPlatforms Affected:Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Server 2019 Microsoft SharePoint Server Subscription EditionRisk Level:6.1Exploitability:UnprovenConsequences:Gain...
NAME__________Adobe Acrobat and Adobe Reader code executionPlatforms Affected:Adobe Acrobat DC 23.006.20360 Adobe Acrobat Reader DC 23.006.20360 Adobe Acrobat Reader 2020...
NAME__________Fortinet FortiSIEM information disclosurePlatforms Affected:Fortinet FortiSIEM 6.7.0 Fortinet FortiSIEM 6.7.5 Fortinet FortiSIEM 7.0.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiSIEM could allow a...
NAME__________Microsoft Windows Hyper-V privilege escalationPlatforms Affected:Microsoft Windows Server 2022 Microsoft Windows Server (Server Core installation) 2022 Microsoft Windows 11 22H2...
NAME__________Microsoft Windows Installer privilege escalationPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...
NAME__________Adobe ColdFusion code executionPlatforms Affected:Adobe ColdFusion 2023 Update 5 Adobe ColdFusion 2021 Update 11Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe ColdFusion could allow...
NAME__________Adobe Acrobat and Adobe Reader code executionPlatforms Affected:Adobe Acrobat DC 23.006.20360 Adobe Acrobat Reader DC 23.006.20360 Adobe Acrobat Reader 2020...
NAME__________Adobe ColdFusion cross-site scriptingPlatforms Affected:Adobe ColdFusion 2023 Update 5 Adobe ColdFusion 2021 Update 11Risk Level:6.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Adobe ColdFusion is vulnerable...
NAME__________Microsoft Windows Kernel privilege escalationPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...
NAME__________Intel Unison software denial of servicePlatforms Affected:Intel Unison 20.14Risk Level:1.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Intel Unison software is vulnerable to a denial...
NAME__________Microsoft Dynamics 365 (on-premises) cross-site scriptingPlatforms Affected:Microsoft Dynamics 365 (on-premises) 9.0 Microsoft Dynamics 365 (on-premises) 9.1Risk Level:6.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics...
NAME__________Intel Unison software privilege escalationPlatforms Affected:Intel Unison 20.14Risk Level:5.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Intel Unison software could allow a remote authenticated attacker to...
The Lockbit ransomware attacks use publicly available exploits for the Citrix Bleed vulnerability (CVE-2023-4966) to breach the systems of large...
It’s not every day that you discover a new Russian hacking group complete with a song and dance routine (performed...
Postmeds, doing business as ‘Truepill,’ is sending notifications of a data breach informing recipients that threat actors accessed their sensitive...
VMware disclosed a critical and unpatched authentication bypass vulnerability affecting Cloud Director appliance deployments. Cloud Director enables VMware admins to...
The U.S. Department of Justice announced today that Federal Bureau of Investigation took down the network and infrastructure of a botnet...
The WordPress plugin WP Fastest Cache is vulnerable to an SQL injection vulnerability that could allow unauthenticated attackers to read the contents...
Intel has fixed a high-severity CPU vulnerability in its modern desktop, server, mobile, and embedded CPUs, including the latest Alder...
A new software-based fault injection attack, CacheWarp, can let threat actors hack into AMD SEV-protected virtual machines by targeting memory writes...
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesBrowser Medium RiskRemote Code Execution Elevation of Privilege Spoofing Azure Medium...
The UK’s critical infrastructure (CNI) providers face a persistent and critical threat from emboldened state-backed and aligned actors, a leading...
A Middle Eastern advanced persistent threat (APT) group launched a new series of targeted cyber-espionage attacks from July to October...
The Royal ransomware group has targeted more than 350 global victims since September 2022, demanding hundreds of millions in ransom...
