CVE Alert: CVE-2024-7840
Vulnerability Summary: CVE-2024-7840 In Progress Telerik Reporting versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through...
Month: October 2024
CVE Alert: CVE-2024-7293
Vulnerability Summary: CVE-2024-7293 In ProgressĀ® TelerikĀ® Report Server versions prior to 2024 Q3 (10.2.24.806), a password brute forcing attack is...
CVE Alert: CVE-2024-9671
Vulnerability Summary: CVE-2024-9671 A vulnerability was found in 3Scale. There is no auth mechanism to see a PDF invoice of...
CVE Alert: CVE-2024-8015
Vulnerability Summary: CVE-2024-8015 In Progress Telerik Report Server versions prior to 2024 Q3 (10.2.24.924), a remote code execution attack is...
CVE Alert: CVE-2024-8048
Vulnerability Summary: CVE-2024-8048 In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a code execution attack is possible using...
CVE Alert: CVE-2024-46316
Vulnerability Summary: CVE-2024-46316 DrayTek Vigor3900 v1.5.1.6 was discovered to contain a command injection vulnerability via the sub_2C920 function at /cgi-bin/mainfunction.cgi....
CVE Alert: CVE-2024-46304
Vulnerability Summary: CVE-2024-46304 A Buffer Overflow vulnerability in libcoap v4.3.5-rc2 and below allows a remote attacker to cause a denial...
[MEOW] – Ransomware Victim: La Futura
Ransomware Group: MEOW VICTIM NAME: La Futura NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEOW] – Ransomware Victim: Barnes Cohen and Sullivan
Ransomware Group: MEOW VICTIM NAME: Barnes Cohen and Sullivan NOTE: No files or stolen information are by RedPacket Security. Any...
[RANSOMHUB] – Ransomware Victim: medexhco[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: medexhcocom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 91[.]186[.]211[.]102:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 38[.]147[.]172[.]45:6667
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 117[.]72[.]83[.]32:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[HUNTERS] – Ransomware Victim: Glacier
Ransomware Group: HUNTERS VICTIM NAME: Glacier NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[MEOW] – Ransomware Victim: Atlantic Coast Consulting Inc
Ransomware Group: MEOW VICTIM NAME: Atlantic Coast Consulting Inc NOTE: No files or stolen information are by RedPacket Security. Any...
Fortinet Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Mozilla Firefox Remote Code Execution Vulnerability
A vulnerability was identified in Mozilla Firefox. A remote attacker could exploit this vulnerability to trigger remote code execution on...
CVE Alert: CVE-2024-46292
Vulnerability Summary: CVE-2024-46292 A buffer overflow in modsecurity v3.0.12 allows attackers to cause a Denial of Service (DoS) via a...
CVE Alert: CVE-2024-43610
Vulnerability Summary: CVE-2024-43610 Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view...
CVE Alert: CVE-2024-47813
Vulnerability Summary: CVE-2024-47813 Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a `wasmtime::Engine`'s internal type...
CVE Alert: CVE-2024-47812
Vulnerability Summary: CVE-2024-47812 ImportDump is an extension for mediawiki designed to automate user import requests. Anyone who can edit the...
CVE Alert: CVE-2024-47763
Vulnerability Summary: CVE-2024-47763 Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack...
CVE Alert: CVE-2024-47816
Vulnerability Summary: CVE-2024-47816 ImportDump is a mediawiki extension designed to automate user import requests. A user's local actor ID is...
CVE Alert: CVE-2024-7038
Vulnerability Summary: CVE-2024-7038 An information disclosure vulnerability exists in open-webui version 0.3.8. The vulnerability is related to the embedding model...
