Month: February 2024

CISA: CISA Releases Eight Industrial Control Systems Advisories

February 4, 2024

CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2024. These...

CISA: Juniper Networks Releases Security Bulletin for J-Web in Junos OS SRX Series and EX Series

February 4, 2024

Juniper Networks Releases Security Bulletin for J-Web in Junos OS SRX Series and EX Series Juniper Networks released a security...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

February 4, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: Updated: New Software Updates and Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways

February 4, 2024

Updated: New Software Updates and Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways Note: CISA...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

February 4, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: Moby and Open Container Initiative Release Critical Updates for Multiple Vulnerabilities Affecting Docker-related Components

February 4, 2024

Moby and Open Container Initiative Release Critical Updates for Multiple Vulnerabilities Affecting Docker-related Components Moby and the Open Container Initiative...

CISA: Juniper Networks Releases Security Bulletin for Juniper Secure Analytics

February 4, 2024

Juniper Networks Releases Security Bulletin for Juniper Secure Analytics Juniper Networks released a security bulletin to address multiple vulnerabilities affecting...

CISA: CISA and FBI Release Secure by Design Alert Urging Manufacturers to Eliminate Defects in SOHO Routers

February 4, 2024

CISA and FBI Release Secure by Design Alert Urging Manufacturers to Eliminate Defects in SOHO Routers Today, CISA and the...

CISA: CISA Releases Two Industrial Control Systems Advisories

February 4, 2024

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on February 1, 2024. These...

Medusa Locker Ransomware Victim: Digitel Venezuela

February 3, 2024

Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

LockBit 3.0 Ransomware Victim: securinux[.]net

February 3, 2024

LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Emerson Rosemount GC370XA, GC700XA, GC1500XA information disclosure | CVE-2023-43609

February 3, 2024

NAME__________Emerson Rosemount GC370XA, GC700XA, GC1500XA information disclosurePlatforms Affected:Emerson Rosemount GC370XA Emerson Rosemount GC700XA Emerson Rosemount GC1500XARisk Level:6.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Emerson Rosemount...

Login System with Email Verification SQL injection | CVE-2024-24139

February 3, 2024

NAME__________Login System with Email Verification SQL injectionPlatforms Affected:Sourcecodester Login System with Email Verification 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Login System with Email...

Embedthis GoAhead Web Server cross-site scripting |

February 3, 2024

NAME__________Embedthis GoAhead Web Server cross-site scriptingPlatforms Affected:Goahead Goahead Webserver 2.5Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Embedthis GoAhead Web Server is vulnerable to cross-site...

Product Inventory with Export to Excel cross-site scripting | CVE-2024-24135

February 3, 2024

NAME__________Product Inventory with Export to Excel cross-site scriptingPlatforms Affected:Sourcecodester Product Inventory with Export to Excel 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Product Inventory...

Math Game with Leaderboard cross-site scripting | CVE-2024-24136

February 3, 2024

NAME__________Math Game with Leaderboard cross-site scriptingPlatforms Affected:Sourcecodester Math Game with Leaderboard 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Math Game with Leaderboard is vulnerable...

Online Food Menu cross-site scripting | CVE-2024-24134

February 3, 2024

NAME__________Online Food Menu cross-site scriptingPlatforms Affected:Sourcecodester Online Food Menu 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Online Food Menu is vulnerable to cross-site scripting,...

HOME SPOT CUBE2 buffer overflow | CVE-2024-21780

February 3, 2024

NAME__________HOME SPOT CUBE2 buffer overflowPlatforms Affected:KDDI HOME SPOT CUBE2 102Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HOME SPOT CUBE2 is vulnerable to a stack-based...

OpenHarmony denial of service | CVE-2024-21863

February 3, 2024

NAME__________OpenHarmony denial of servicePlatforms Affected:OpenHarmony OpenHarmony 3.2.0 OpenHarmony OpenHarmony 3.2.4 OpenHarmony OpenHarmony 4.0.0 OpenHarmony OpenHarmony 4.0.1Risk Level:4.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenHarmony...

Month: February 2024

CISA: CISA Releases Eight Industrial Control Systems Advisories

CISA: Juniper Networks Releases Security Bulletin for J-Web in Junos OS SRX Series and EX Series

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Updated: New Software Updates and Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Moby and Open Container Initiative Release Critical Updates for Multiple Vulnerabilities Affecting Docker-related Components

CISA: Juniper Networks Releases Security Bulletin for Juniper Secure Analytics

CISA: CISA and FBI Release Secure by Design Alert Urging Manufacturers to Eliminate Defects in SOHO Routers

CISA: CISA Releases Two Industrial Control Systems Advisories

Medusa Locker Ransomware Victim: Digitel Venezuela

LockBit 3.0 Ransomware Victim: securinux[.]net

Emerson Rosemount GC370XA, GC700XA, GC1500XA information disclosure | CVE-2023-43609

Login System with Email Verification SQL injection | CVE-2024-24139

Embedthis GoAhead Web Server cross-site scripting |

Product Inventory with Export to Excel cross-site scripting | CVE-2024-24135

Math Game with Leaderboard cross-site scripting | CVE-2024-24136

Online Food Menu cross-site scripting | CVE-2024-24134

HOME SPOT CUBE2 buffer overflow | CVE-2024-21780

OpenHarmony denial of service | CVE-2024-21863

Daily Habit Tracker SQL injection | CVE-2024-24140

School Task Manager SQL injection | CVE-2024-24141

The GNU C Library (glibc) denial of service | CVE-2023-6780

Mastodon Vulnerability Allows Hackers to Hijack Any Decentralized Account

U.S. Sanctions 6 Iranian Officials for Critical Infrastructure Cyber Attacks

CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies

CISA: CISA Releases New Public Version of CDM Data Model Document

CISA: Cisco Releases Security Updates for NX-OS Software

CISA: Microsoft Releases December 2024 Security Updates

CISA: CISA Releases Two Industrial Control Systems Advisories

You may have missed