CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on October 31, 2023. These...
Month: November 2023
CISA: CISA Published When to Issue VEX Information
CISA Published When to Issue VEX Information Today, CISA published When to Issue Vulnerability Exploitability eXchange (VEX) Information, developed by...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 2, 2023. These...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco released security advisories for vulnerabilities affecting multiple Cisco products. A cyber threat...
CISA: Atlassian Releases Security Advisory for Confluence Data Center and Server
Atlassian Releases Security Advisory for Confluence Data Center and Server Atlassian released a security advisory to address a vulnerability (CVE-2023-22518)...
SolarWinds Network Configuration Manager information disclosure | CVE-2023-33228
NAME__________SolarWinds Network Configuration Manager information disclosurePlatforms Affected:SolarWinds Network Configuration Manager 2023.3.1Risk Level:4.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SolarWinds Network Configuration Manager could allow a...
ChatBot Plugin for WordPress cross-site scripting | CVE-2023-5606
NAME__________ChatBot Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Chatbot Plugin for WordPress 4.9.6Risk Level:4.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ChatBot Plugin for WordPress is vulnerable...
NVIDIA Display Driver for Windows denial of service | CVE-2023-31023
NAME__________NVIDIA Display Driver for Windows denial of servicePlatforms Affected:NVIDIA GPU Display Driver for WindowsRisk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NVIDIA Display Driver...
SolarWinds Orion Platform weak security | CVE-2023-40061
NAME__________SolarWinds Orion Platform weak securityPlatforms Affected:SolarWinds Orion Platform 2023.3.1Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SolarWinds Orion Platform could provide weaker than expected security,...
NVIDIA GPU Display Driver for Windows code execution | CVE-2023-31016
NAME__________NVIDIA GPU Display Driver for Windows code executionPlatforms Affected:NVIDIA GPU Display Driver for WindowsRisk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NVIDIA GPU Display Driver...
SEO Slider Plugin for WordPress cross-site scripting | CVE-2023-5707
NAME__________SEO Slider Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress SEO Slider Plugin Plugin for WordPress 1.1.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SEO Slider Plugin...
NVIDIA vGPU software for Windows and Linux denial of service | CVE-2023-31021
NAME__________NVIDIA vGPU software for Windows and Linux denial of servicePlatforms Affected:NVIDIA vGPU softwareRisk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NVIDIA vGPU software for...
MOXA PT-G503 Series information disclosure | CVE-2023-4217
NAME__________MOXA PT-G503 Series information disclosurePlatforms Affected:MOXA PT-G503 Series 5.2Risk Level:3.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MOXA PT-G503 Series could allow a remote attacker to...
NVIDIA GPU Driver for Windows and Linux denial of service | CVE-2023-31018
NAME__________NVIDIA GPU Driver for Windows and Linux denial of servicePlatforms Affected:NVIDIA GPU Driver for Windows NVIDIA GPU Driver for LinuxRisk...
NVIDIA GPU Driver for Windows and Linux denial of service | CVE-2023-31026
NAME__________NVIDIA GPU Driver for Windows and Linux denial of servicePlatforms Affected:NVIDIA vGPU softwareRisk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NVIDIA GPU Driver for...
NVIDIA GPU Display Driver for Windows security bypass | CVE-2023-31019
NAME__________NVIDIA GPU Display Driver for Windows security bypassPlatforms Affected:NVIDIA GPU Display Driver for WindowsRisk Level:7.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________NVIDIA GPU Display Driver...
Japan National Tax Agency e-Tax Software XML external entity injection | CVE-2023-46802
NAME__________Japan National Tax Agency e-Tax Software XML external entity injectionPlatforms Affected:Japan National Tax Agency e-Tax Software 3.0.10Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Japan...
FRRouting FRR denial of service | CVE-2023-47235
NAME__________FRRouting FRR denial of servicePlatforms Affected:FRRouting FRRouting 9.0.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________FRRouting FRR is vulnerable to a denial of service,...
FRRouting FRR denial of service | CVE-2023-47234
NAME__________FRRouting FRR denial of servicePlatforms Affected:FRRouting FRRouting 9.0.1Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________FRRouting FRR is vulnerable to a denial of service,...
pkp/pkp-lib cross-site scripting | CVE-2023-5890
NAME__________pkp/pkp-lib cross-site scriptingPlatforms Affected:pkp pkp-lib 3.4.0-3Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________pkp/pkp-lib is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Best Practical Request Tracker (RT) information disclosure | CVE-2023-41259
NAME__________Best Practical Request Tracker (RT) information disclosurePlatforms Affected:Best Practical Request Tracker (RT) 5.0.4 Best Practical Request Tracker (RT) 4.4.6Risk Level:7.5Exploitability:UnprovenConsequences:Obtain...
Best Practical Request Tracker (RT) information disclosure | CVE-2023-41260
NAME__________Best Practical Request Tracker (RT) information disclosurePlatforms Affected:Best Practical Request Tracker (RT) 5.0.4 Best Practical Request Tracker (RT) 4.4.6Risk Level:7.5Exploitability:UnprovenConsequences:Obtain...
video carousel slider with lightbox Plugin for WordPress cross-site request forgery | CVE-2023-5945
NAME__________video carousel slider with lightbox Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress video carousel slider with lightbox Plugin for WordPress...
