Year: 2023

Siemens RUGGEDCOM ROX devices weak security | CVE-2023-36748

July 12, 2023

NAME__________Siemens RUGGEDCOM ROX devices weak securityPlatforms Affected:Siemens RUGGEDCOM ROX MX5000 2.14.0 Siemens RUGGEDCOM ROX RX1400 2.14.0 Siemens RUGGEDCOM ROX RX1500...

Panasonic Control FPWIN code execution | CVE-2023-28730

July 12, 2023

NAME__________Panasonic Control FPWIN code executionPlatforms Affected:Panasonic Control FPWIN 7.6.0.3Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Panasonic Control FPWIN could allow a local attacker to...

Microsoft Access code execution | CVE-2023-33161

July 12, 2023

NAME__________Microsoft Access code executionPlatforms Affected:Microsoft Office 2019 Mac Microsoft 365 Apps for Enterprise x32 Microsoft 365 Apps for Enterprise x64...

Microsoft Windows Win32k privilege escalation | CVE-2023-21756

July 12, 2023

NAME__________Microsoft Windows Win32k privilege escalationPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...

Panasonic Control FPWIN code execution | CVE-2023-28729

July 12, 2023

Apache Jena code execution | CVE-2023-32200

July 12, 2023

NAME__________Apache Jena code executionPlatforms Affected:Apache Jena 3.7.0 Apache Jena 4.8.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Jena could allow a remote attacker to...

Microsoft Windows Update Orchestrator Service information disclosure | CVE-2023-32041

July 12, 2023

NAME__________Microsoft Windows Update Orchestrator Service information disclosurePlatforms Affected:Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows 10 1809 for...

Microsoft Windows Kernel information disclosure | CVE-2023-33174

July 12, 2023

NAME__________Microsoft Windows Kernel information disclosurePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...

Microsoft Windows Remote Procedure Call Runtime denial of service | CVE-2023-33168

July 12, 2023

NAME__________Microsoft Windows Remote Procedure Call Runtime denial of servicePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows...

Microsoft Windows Remote Procedure Call Runtime denial of service | CVE-2023-33169

July 12, 2023

NAME__________Microsoft Windows Remote Procedure Call Runtime denial of servicePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows...

Microsoft Windows Azure Active Directory privilege escalation | CVE-2023-35348

July 12, 2023

NAME__________Microsoft Windows Azure Active Directory privilege escalationPlatforms Affected:Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server (Server Core...

Microsoft Windows Azure Active Directory security bypass | CVE-2023-36871

July 12, 2023

NAME__________Microsoft Windows Azure Active Directory security bypassPlatforms Affected:Microsoft Windows 10 x32 Microsoft Windows 10 x64 Microsoft Windows Server 2016 Microsoft...

Microsoft Windows CryptoAPI denial of service | CVE-2023-35339

July 12, 2023

NAME__________Microsoft Windows CryptoAPI denial of servicePlatforms Affected:Microsoft Windows 10 x32 Microsoft Windows 10 x64 Microsoft Windows Server 2016 Microsoft Windows...

SAP ERP Defense Forces and Public Security security bypass | CVE-2023-36924

July 12, 2023

NAME__________SAP ERP Defense Forces and Public Security security bypassPlatforms Affected:SAP ERP Defense Forces and Public Security 600 SAP ERP Defense...

Microsoft Windows information disclosure | CVE-2023-35296

July 12, 2023

NAME__________Microsoft Windows information disclosurePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows 10...

Microsoft Access code execution | CVE-2023-33152

July 12, 2023

NAME__________Microsoft Access code executionPlatforms Affected:Microsoft Access 2013 SP1 x32 Microsoft Access 2013 SP1 x64 Microsoft Office 2016 x32 Microsoft Office...

Adobe InDesign information disclosure | CVE-2023-29310

July 12, 2023

NAME__________Adobe InDesign information disclosurePlatforms Affected:Adobe InDesign ID18.3 Adobe InDesign ID17.4.1Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe InDesign could allow a remote attacker to...

Fortinet FortiOS security bypass | CVE-2023-28001

July 12, 2023

NAME__________Fortinet FortiOS security bypassPlatforms Affected:Fortinet FortiOS 7.0.0 Fortinet FortiOS 7.2.0 Fortinet FortiOS 7.2.4Risk Level:4.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Fortinet FortiOS could allow a...

Microsoft SharePoint Server security bypass | CVE-2023-33165

July 12, 2023

NAME__________Microsoft SharePoint Server security bypassPlatforms Affected:Microsoft SharePoint Server 2019 Microsoft SharePoint Server Subscription EditionRisk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Microsoft SharePoint Server could...

Year: 2023

Siemens RUGGEDCOM ROX devices weak security | CVE-2023-36748

Panasonic Control FPWIN code execution | CVE-2023-28730

Microsoft Access code execution | CVE-2023-33161

Microsoft Windows Win32k privilege escalation | CVE-2023-21756

Panasonic Control FPWIN code execution | CVE-2023-28729

Apache Jena code execution | CVE-2023-32200

Microsoft Windows Update Orchestrator Service information disclosure | CVE-2023-32041

Microsoft Windows Kernel information disclosure | CVE-2023-33174

Microsoft Windows Remote Procedure Call Runtime denial of service | CVE-2023-33168

Microsoft Windows Remote Procedure Call Runtime denial of service | CVE-2023-33169

Microsoft Windows Azure Active Directory privilege escalation | CVE-2023-35348

Microsoft Windows Azure Active Directory security bypass | CVE-2023-36871

Microsoft Windows CryptoAPI denial of service | CVE-2023-35339

SAP ERP Defense Forces and Public Security security bypass | CVE-2023-36924

Microsoft Windows information disclosure | CVE-2023-35296

Microsoft Access code execution | CVE-2023-33152

Adobe InDesign information disclosure | CVE-2023-29310

Fortinet FortiOS security bypass | CVE-2023-28001

Microsoft SharePoint Server security bypass | CVE-2023-33165

Microsoft Windows Remote Procedure Call Runtime information disclosure | CVE-2023-35316

Microsoft Windows Transaction Manager privilege escalation | CVE-2023-35328

Microsoft Windows PostScript and PCL6 Class Printer Driver information disclosure | CVE-2023-32040

Microsoft Windows VOLSNAP.SYS privilege escalation | CVE-2023-35312

Microsoft Windows Kernel privilege escalation | CVE-2023-35358

Cobalt Strike Beacon Detected – 39[.]100[.]64[.]169:8081

Cobalt Strike Beacon Detected – 185[.]73[.]124[.]238:80

Cobalt Strike Beacon Detected – 101[.]35[.]45[.]108:50001

CISA: CISA Releases the Cybersecurity Performance Goals Adoption Report

CISA: Fortinet Releases Security Updates for Multiple Products

You may have missed