Atlassian Finds Public Exploit for Critical Bug
Software vendor Atlassian has discovered “publicly posted critical information” about a recently published critical vulnerability, increasing the likelihood it will...
Year: 2023
UK AI Safety Institute: A Blueprint for the Future of AI?
The UK Frontier AI Taskforce, a government-funded initiative launched in April 2023 as the Foundation Model Taskforce, is evolving to...
Healthcare Data Breaches Impact 88 Million Americans
Threat actors have compromised sensitive health data on tens of millions of US patients so far this year, according to...
Play Ransomware Victim: GeoPoint Surveying
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
US-CERT Vulnerability Summary for the Week of October 23, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info projectworlds_pvt._limited -- online_art_gallery Online Art Gallery v1.0 is vulnerable to multiple...
Aws-Waf-Header-Analyzer – The Purpose Of The Project Is To Create Rate Limit In AWS WaF Based On HTTP Headers
The purpose of the project is to create rate limit in AWS WaF based on HTTP headers.Golang is a dependencie...
HackerOne Bug Bounty Disclosure: b-information-disclosure-due-unauthenticated-access-to-apis-and-system-browser-functions-b-sufatmawati
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'sufatmawati'Link to Submitters Profile:https://hackerone.com/b'sufatmawati' Report Title:b' Information disclosure due...
HackerOne Bug Bounty Disclosure: b-user-automatically-logged-in-as-sys-admin-user-on-https-administration-administration-aspx-b-mrr-b-t
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'mrr0b0t2324'Link to Submitters Profile:https://hackerone.com/b'mrr0b0t2324' Report Title:b'User automatically logged in...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco released security advisories for vulnerabilities affecting multiple Cisco products. A cyber threat...
Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments
The threat actors linked to Kinsing have been observed attempting to exploit the recently disclosed Linux privilege escalation flaw called...
Predictive AI in Cybersecurity: Outcomes Demonstrate All AI is Not Created Equally
Here is what matters most when it comes to artificial intelligence (AI) in cybersecurity: Outcomes. As the threat landscape evolves...
NodeStealer Malware Hijacking Facebook Business Accounts for Malicious Ads
Compromised Facebook business accounts are being used to run bogus ads that employ "revealing photos of young women" as lures...
CanesSpy Spyware Discovered in Modified WhatsApp Versions
Cybersecurity researchers have unearthed a number of WhatsApp mods for Android that come fitted with a spyware module dubbed CanesSpy....
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
IBM CICS TX cross-site request forgery | CVE-2023-42027
NAME__________IBM CICS TX cross-site request forgeryPlatforms Affected:IBM TXSeries for Multiplatforms 8.1 IBM TXSeries for Multiplatforms 8.2 IBM TXSeries for Multiplatforms...
Hitachi Energy MACH System Software directory traversal | CVE-2023-2622
NAME__________Hitachi Energy MACH System Software directory traversalPlatforms Affected:Hitachi Energy MACH System Software 7.10.0.0 Hitachi Energy MACH System Software 7.18.0.0Risk Level:2.7Exploitability:UnprovenConsequences:Obtain...
IBM CICS TX privilege escalation | CVE-2023-43018
NAME__________IBM CICS TX privilege escalationPlatforms Affected:IBM CICS TX Standard 11.1 IBM CICS TX Advanced 11.1 IBM CICS TX Advanced 10.1Risk...
FOG Project FOG directory traversal | CVE-2023-46237
NAME__________FOG Project FOG directory traversalPlatforms Affected:FOGProject FOGProject 1.5.9Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________FOG Project FOG could allow a remote attacker to traverse...
Carousel, Recent Post Slider and Banner Slider plugin for WordPress cross-site scripting | CVE-2023-5362
NAME__________Carousel, Recent Post Slider and Banner Slider plugin for WordPress cross-site scriptingPlatforms Affected:Spicethemes Carousel Recent Post Slider and Banner Slider...
PX4-Autopilot buffer overflow | CVE-2023-46256
NAME__________PX4-Autopilot buffer overflowPlatforms Affected:PX4 PX4-Autopilot 1.14.0-rc1Risk Level:4.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PX4-Autopilot is vulnerable to a heap-based buffer overflow, caused by improper bounds...
IBM CICS TX cross-site scripting | CVE-2023-42029
NAME__________IBM CICS TX cross-site scriptingPlatforms Affected:IBM TXSeries for Multiplatforms 8.1 IBM TXSeries for Multiplatforms 8.2 IBM TXSeries for Multiplatforms 9.1...
MOXA NPort 6000 Series information disclosure | CVE-2023-5627
NAME__________MOXA NPort 6000 Series information disclosurePlatforms Affected:MOXA NPort 6000 Series 1.21Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MOXA NPort 6000 Series could allow a...
Hitachi Energy MACH System Software directory traversal |
NAME__________Hitachi Energy MACH System Software directory traversalPlatforms Affected:Hitachi Energy MACH System Software 5 Hitachi Energy MACH System Software 6 Hitachi...
Pimcore Admin Classic Bundle cross-site scripting | CVE-2023-46722
NAME__________Pimcore Admin Classic Bundle cross-site scriptingPlatforms Affected:Pimcore Admin Classic Bundle 1.1.4 Pimcore Admin Classic Bundle 1.1.3 Pimcore Admin Classic Bundle...
