Siemens SIPROTEC 5 devices denial of service | CVE-2023-28766
NAME__________Siemens SIPROTEC 5 devices denial of servicePlatforms Affected:Siemens SIPROTEC 5 6MD89 (CP300) Siemens SIPROTEC 5 7KE85 (CP200) Siemens SIPROTEC 5...
Year: 2023
LiveAction LiveSP cross-site scripting | CVE-2023-27775
NAME__________LiveAction LiveSP cross-site scriptingPlatforms Affected:Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________LiveAction LiveSPis vulnerable to cross-site scripting, caused by improper validation of user-supplied input...
ServiceNow cross-site scripting | CVE-2022-39048
NAME__________ServiceNow cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ServiceNow is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...
BlueZ code execution | CVE-2023-27349
NAME__________BlueZ code executionPlatforms Affected:BlueZ BlueZRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________BlueZ could allow a remote attacker to execute arbitrary code on the system,...
Textpattern CMS file upload | CVE-2023-26852
NAME__________Textpattern CMS file uploadPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Textpattern CMS could allow a remote authenticated attacker to upload arbitrary files, caused...
PikPak information disclosure | CVE-2023-27703
NAME__________PikPak information disclosurePlatforms Affected:Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________PikPak could allow a local attacker to obtain sensitive information, caused by a flaw...
Autodesk Maya code execution | CVE-2023-27907
NAME__________Autodesk Maya code executionPlatforms Affected:Autodesk Maya USD Plugin 0.22.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Autodesk Maya could allow a remote attacker to execute...
Siemens Mendix Forgot Password information disclosure | CVE-2023-27464
NAME__________Siemens Mendix Forgot Password information disclosurePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Siemens Mendix Forgot Password could allow a remote attacker to obtain...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
Void Tools Everything denial of service | CVE-2023-27704
NAME__________Void Tools Everything denial of servicePlatforms Affected:Risk Level:4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Void Tools Everything is vulnerable to a denial of service,...
D-Link DSL-3782 code execution | CVE-2023-27216
NAME__________D-Link DSL-3782 code executionPlatforms Affected:Risk Level:6.8Exploitability:UnprovenConsequences: DESCRIPTION__________D-Link DSL-3782 could allow a remote authenticated attacker to execute arbitrary code on the...
ManageEngine ADManager Plus command execution | CVE-2023-29084
NAME__________ManageEngine ADManager Plus command executionPlatforms Affected:Zoho ManageEngine ADManager PlusRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ManageEngine ADManager Plus could allow a remote authenticated attacker...
Autodesk Maya information disclosure | CVE-2023-25010
NAME__________Autodesk Maya information disclosurePlatforms Affected:Autodesk Maya USD Plugin 0.22.0Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Autodesk Maya could allow a remote attacker to obtain...
ConnMan denial of service | CVE-2023-28488
NAME__________ConnMan denial of servicePlatforms Affected:ConnMan ConnMan 1.41Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________ConnMan is vulnerable to a denial of service, caused by...
Palo Alto Networks PAN-OS security bypass | CVE-2023-0004
NAME__________Palo Alto Networks PAN-OS security bypassPlatforms Affected:Palo Alto Networks PAN-OS 9.0.0 Palo Alto Networks PAN-OS 8.1 Palo Alto Networks PAN-OS...
shadow-maint shadow-utils security bypass |
NAME__________shadow-maint shadow-utils security bypassPlatforms Affected:shadow-maint shadow-utils 4.13Risk Level:3.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________shadow-maint shadow-utils could allow a local authenticated attacker to bypass security...
Autodesk Maya code execution | CVE-2023-27906
NAME__________Autodesk Maya code executionPlatforms Affected:Autodesk Maya USD Plugin 0.22.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Autodesk Maya could allow a remote attacker to execute...
Linux Kernel denial of service | CVE-2023-2019
NAME__________Linux Kernel denial of servicePlatforms Affected:Linux KernelRisk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service, caused...
Linux Kernel information disclosure | CVE-2023-2007
NAME__________Linux Kernel information disclosurePlatforms Affected:Linux KernelRisk Level:6.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Linux Kernel could allow a local authenticated attacker to obtain sensitive information,...
Palo Alto Networks GlobalProtect app for Windows security bypass | CVE-2023-0006
NAME__________Palo Alto Networks GlobalProtect app for Windows security bypassPlatforms Affected:Palo Alto Networks GlobalProtect app for Windows 5.2 Palo Alto Networks...
Palo Alto Networks PAN-OS information disclosure | CVE-2023-0005
NAME__________Palo Alto Networks PAN-OS information disclosurePlatforms Affected:Palo Alto Networks PAN-OS 9.0.0 Palo Alto Networks PAN-OS 8.1 Palo Alto Networks PAN-OS...
Mitsubishi Electric GC-ENET-COM denial of service | CVE-2023-1285
NAME__________Mitsubishi Electric GC-ENET-COM denial of servicePlatforms Affected:Mitsubishi Electric GC-ENET-COMRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mitsubishi Electric GC-ENET-COM is vulnerable to a denial...
Webinar: Tips from MSSPs to MSSPs – Building a Profitable vCISO Practice
In today's fast-paced and ever-changing digital landscape, businesses of all sizes face a myriad of cybersecurity threats. Putting in place...
Severe Android and Novi Survey Vulnerabilities Under Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, based...
