Russian Coldriver Hackers Deploy Malware to Target Western Officials
Russian threat group Coldriver has expanded its targeting of Western officials with the use of malware to steal sensitive data,...
Russian threat group Coldriver has expanded its targeting of Western officials with the use of malware to steal sensitive data,...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Incident Response Guide for the WWS Sector Today, CISA, the Federal Bureau of Investigation (FBI), and the Environmental Protection Agency...
VMware Releases Security Advisory for Aria Automation VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Automation....
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway Citrix released security updates to address vulnerabilities (CVE-2023-6548 and CVE-2023-6549)...
CISA Issues Emergency Directive on Ivanti Vulnerabilities CISA has issued Emergency Directive (ED) 24-01 Mitigate Ivanti Connect Secure and Ivanti...
Atlassian Releases Security Updates for Multiple Products Atlassian released a security advisory to address a vulnerability (CVE-2023-22527) in out-of-date versions...
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on January 18, 2024. These...
Drupal Releases Security Advisory for Drupal Core Drupal released a security advisory to address a vulnerability affecting multiple Drupal core versions....
Oracle Releases Critical Patch Update Advisory for January 2024 Oracle released its Critical Patch Update Advisory for January 2024 to...
This is a tool I whipped up together quickly to DCSync utilizing ESC1. It is quite slow but otherwise an...
CISA Issues Emergency Directive on Ivanti Vulnerabilities CISA has issued Emergency Directive (ED) 24-01 Mitigate Ivanti Connect Secure and Ivanti...
VMware Releases Security Advisory for Aria Automation VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Automation....
In the current digital landscape, data has emerged as a crucial asset for organizations, akin to currency. It's the lifeblood...
Pirated applications targeting Apple macOS users have been observed containing a backdoor capable of granting attackers remote control to infected...
There are reports of active exploitation of a critical authentication bypass vulnerability (CVE-2023-35082) in Ivanti's Endpoint Manager Mobile (EPMM) and...
NAME__________Oracle Outside In Technology unspecifiedPlatforms Affected:Oracle Outside In Technology 8.5.6Risk Level:6.3Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Outside In Technology related...
NAME__________Oracle Knowledge Management unspecifiedPlatforms Affected:Oracle Knowledge Management 12.2.3 Oracle Knowledge Management 12.2.13Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Knowledge Management...
NAME__________PAX Technology A920Pro/A50 devices code executionPlatforms Affected:PAX Technology A920 Pro 11.1.50_20230614 PAX Technology A50 11.1.50_20230614Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PAX Technology A920Pro/A50...
NAME__________Oracle WebCenter Sites unspecifiedPlatforms Affected:Oracle WebCenter Sites 12.2.1.4.0Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle WebCenter Sites related to the Advanced...
NAME__________Tenda A15 buffer overflowPlatforms Affected:Tenda A15 15.13.07.13Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Tenda A15 is vulnerable to a stack-based buffer overflow, caused by...
NAME__________StackIdeas EasyDiscuss SQL injectionPlatforms Affected:StackIdeas EasyDiscuss 5.0.5 StackIdeas EasyDiscuss 5.0.10Risk Level:6.5Exploitability:HighConsequences:Obtain Information DESCRIPTION__________StackIdeas EasyDiscuss is vulnerable to SQL injection. A...
NAME__________Oracle ZFS Storage Appliance Kit unspecifiedPlatforms Affected:Oracle ZFS Storage Appliance Kit 8.8Risk Level:4.4Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle ZFS Storage...