CISA: CISA Releases Fifteen Industrial Control Systems Advisories
CISA Releases Fifteen Industrial Control Systems Advisories CISA released fifteen Industrial Control Systems (ICS) advisories on March 14, 2024. These...
Month: March 2024
CISA: Repository for Software Attestation and Artifacts Now Live
Repository for Software Attestation and Artifacts Now Live Software producers who partner with the federal government can now upload their...
CISA: CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity
CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity Today, CISA, the National Security...
CISA: Cisco Releases Security Updates for IOS XR Software
Cisco Releases Security Updates for IOS XR Software Cisco released security updates to address vulnerabilities in Cisco IOS XR software....
Sliver C2 Detected – 147[.]182[.]190[.]27:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 31[.]172[.]70[.]202:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 191[.]233[.]252[.]23:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
HackerOne Bug Bounty Disclosure: missing-authorization-check-on-view-permissions-for-alerting-conditions-via-internal-api-accounts-xxxxxxx-policies-yyyyyyy-conditions-offs-endpoint-archangel
Company Name: New Relic Company HackerOne URL: https://hackerone.com/newrelic Submitted By:archangelLink to Submitters Profile:https://hackerone.com/archangel Report Title:Missing Authorization check on View permissions...
HackerOne Bug Bounty Disclosure: steal-any-user-in-your-orgs-private-github-token-by-pointing-the-gh-integration-at-an-attacker-controlled-ghe-instance-archangel
Company Name: New Relic Company HackerOne URL: https://hackerone.com/newrelic Submitted By:archangelLink to Submitters Profile:https://hackerone.com/archangel Report Title:Steal any user in your orgs...
HackerOne Bug Bounty Disclosure: user-without-view-modify-delete-permissions-on-destinations-can-view-modify-delete-destinations-archangel
Company Name: New Relic Company HackerOne URL: https://hackerone.com/newrelic Submitted By:archangelLink to Submitters Profile:https://hackerone.com/archangel Report Title:User without "View/Modify/Delete" permissions on "Destinations"...
CISA: CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity
CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity Today, CISA, the National Security...
Play Ransomware Victim: Schokinag
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Devolutions Remote Desktop Manager information disclosure | CVE-2024-2403
NAME__________Devolutions Remote Desktop Manager information disclosurePlatforms Affected:Devolutions Remote Desktop Manager 2024.1.12Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Devolutions Remote Desktop Manager could allow a...
SonicWall SonicOS denial of service | CVE-2024-22396
NAME__________SonicWall SonicOS denial of servicePlatforms Affected:SonicWall SonicOS 7.0.1-5145Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SonicWall SonicOS is vulnerable to a denial of service,...
SonicWall SonicOS cross-site scripting | CVE-2024-22397
NAME__________SonicWall SonicOS cross-site scriptingPlatforms Affected:SonicWall SonicOS 7.0.1-5145 SonicWall SonicOS 7.0.1-7047Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SonicWall SonicOS is vulnerable to cross-site scripting, caused...
ZenML file upload | CVE-2024-28424
NAME__________ZenML file uploadPlatforms Affected:ZenML ZenML 0.55.4Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ZenML could allow a remote attacker to upload arbitrary files, caused by...
Zemana AntiLogger information disclosure | CVE-2024-2180
NAME__________Zemana AntiLogger information disclosurePlatforms Affected:Zemana AntiLogger 2.74.204.664Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Zemana AntiLogger could allow a local authenticated attacker to obtain sensitive...
SonicWall Email Security directory traversal | CVE-2024-22398
NAME__________SonicWall Email Security directory traversalPlatforms Affected:SonicWall Email Security 10.0.26.7807Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SonicWall Email Security could allow a remote authenticated attacker...
Zemana AntiLogger denial of service | CVE-2024-2204
NAME__________Zemana AntiLogger denial of servicePlatforms Affected:Zemana AntiLogger 2.74.204.664Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Zemana AntiLogger is vulnerable to a denial of service,...
aio-libs aiosmtpd SMTP smuggling | CVE-2024-27305
NAME__________aio-libs aiosmtpd SMTP smugglingPlatforms Affected:aio-libs aiosmtpd 1.4.4Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________aio-libs aiosmtpd is vulnerable to SMTP smuggling, caused by a flaw...
IBM Integration Bus for z/OS cross-site request forgery | CVE-2024-27265
NAME__________IBM Integration Bus for z/OS cross-site request forgeryPlatforms Affected:IBM Integration Bus for z/OS 10.1 IBM Integration Bus for z/OS 10.1.0.3Risk...
“ABEMA” App for Android security bypass | CVE-2024-28745
NAME__________"ABEMA" App for Android security bypassPlatforms Affected:AbemaTV ABEMA" App for Android 10.65.0Risk Level:3.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________"ABEMA" App for Android could allow...
PaperCut NG/MF code execution | CVE-2024-1654
NAME__________PaperCut NG/MF code executionPlatforms Affected:PaperCut PaperCut NG/MFRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PaperCut NG/MF could allow a remote authenticated attacker to execute arbitrary...
Node.js follow-redirects module information disclosure | CVE-2024-28849
NAME__________Node.js follow-redirects module information disclosurePlatforms Affected:Node.js follow-redirects 1.15.5Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Node.js follow-redirects module could allow a remote authenticated attacker to...
