Daily Threat Intelligence – April 12 – 2023
Patch Tuesday is here! Microsoft, SAP, Adobe, Siemens, and Schneider Electric have rolled out security patch updates for their users....
Year: 2023
HackerOne Bug Bounty Disclosure: remote-code-execution-on-owncloud-instances-with-imagemagick-installedbylukasreschke
Programme HackerOne ownCloud ownCloud Submitted by lukasreschke lukasreschke Report Remote Code Execution on ownCloud instances with ImageMagick installed Full Report...
HackerOne Bug Bounty Disclosure: ability-to-read-any-emails-through-idor-on-nextcloud-mailbyctulhu
Programme HackerOne Nextcloud Nextcloud Submitted by ctulhu ctulhu Report Ability to read any emails through IDOR on Nextcloud Mail Full...
HackerOne Bug Bounty Disclosure: github-security-lab-(ghsl)-vulnerability-report:-sqlinjection-in-filecontentprovider-kt-(ghsl-2022-059)byatorralba
Programme HackerOne ownCloud ownCloud Submitted by atorralba atorralba Report GitHub Security Lab (GHSL) Vulnerability Report: SQLInjection in FileContentProvider.kt (GHSL-2022-059) Full...
HackerOne Bug Bounty Disclosure: adding-h1_analyst_*-to-username-for-normal-usersbyrefaat01
Programme HackerOne HackerOne HackerOne Submitted by refaat01 refaat01 Report adding h1_analyst_* to username for normal users Full Report A...
LockBit 3.0 Ransomware Victim: manfil[.]com[.]br
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: uhloans[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cezam[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: grouplease[.]co[.]th
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: robovic[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: comacchio[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: conseildelentente[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: irda[.]com[.]my
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: servex-us[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: medmark[.]eg
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
The Service Accounts Challenge: Can’t See or Secure Them Until It’s Too Late
Here's a hard question to answer: 'How many service accounts do you have in your environment?'. A harder one is:...
Israel-based Spyware Firm QuaDream Targets High-Risk iPhones with Zero-Click Exploit
Threat actors using hacking tools from an Israeli surveillanceware vendor named QuaDream targeted at least five members of civil society...
Microsoft Windows Win32k privilege escalation | CVE-2023-24914
NAME__________Microsoft Windows Win32k privilege escalationPlatforms Affected:Microsoft Windows 11 22H2 for ARM64-based Systems Microsoft Windows 11 22H2 for x64-based SystemsRisk Level:7Exploitability:UnprovenConsequences:Gain...
Microsoft Dynamics 365 cross-site scripting | CVE-2023-28309
NAME__________Microsoft Dynamics 365 cross-site scriptingPlatforms Affected:Risk Level:7.6Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics 365 is vulnerable to cross-site scripting, caused by improper validation...
Microsoft Visual Studio Code code execution | CVE-2023-24893
NAME__________Microsoft Visual Studio Code code executionPlatforms Affected:Microsoft Visual Studio CodeRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Visual Studio Code could allow a remote...
SAP CRM security bypass | CVE-2023-29189
NAME__________SAP CRM security bypassPlatforms Affected:SAP CRM S4FND 102 SAP CRM S4FND 103 SAP CRM S4FND 104 SAP CRM S4FND 105...
Apache InLong SQL injection | CVE-2023-30465
NAME__________Apache InLong SQL injectionPlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Apache InLong is vulnerable to SQL injection. A...
SAP Application Interface Framework cross-site scripting | CVE-2023-29112
NAME__________SAP Application Interface Framework cross-site scriptingPlatforms Affected:SAP Application Interface Framework 600 SAP Application Interface Framework 700Risk Level:3.7Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SAP Application...
Adobe Acrobat and Adobe Reader code execution | CVE-2023-26423
NAME__________Adobe Acrobat and Adobe Reader code executionPlatforms Affected:Adobe Acrobat DC 23.001.20093 Adobe Acrobat Reader DC 23.001.20093 Adobe Acrobat 2020 20.005.30441...
