CVE Alert: CVE-2024-52781
Vulnerability Summary: CVE-2024-52781 DCME-320
Month: November 2024
CVE Alert: CVE-2024-52782
Vulnerability Summary: CVE-2024-52782 DCME-320
CVE Alert: CVE-2024-36626
Vulnerability Summary: CVE-2024-36626 In prestashop 8.1.4, a NULL pointer dereference was identified in the math_round function within Tools.php. Affected Endpoints:...
CVE Alert: CVE-2024-36625
Vulnerability Summary: CVE-2024-36625 Zulip 8.3 is vulnerable to Cross Site Scripting (XSS) via the replace_emoji_with_text function in ui_util.ts. Affected Endpoints:...
CVE Alert: CVE-2024-36619
Vulnerability Summary: CVE-2024-36619 FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an...
CVE Alert: CVE-2024-49805
Vulnerability Summary: CVE-2024-49805 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic...
CVE Alert: CVE-2024-49806
Vulnerability Summary: CVE-2024-49806 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 contains hard-coded credentials, such as a password or cryptographic...
CVE Alert: CVE-2024-49804
Vulnerability Summary: CVE-2024-49804 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated non-administrative user to escalate...
CVE Alert: CVE-2024-35369
Vulnerability Summary: CVE-2024-35369 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient...
CVE Alert: CVE-2024-49803
Vulnerability Summary: CVE-2024-49803 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated attacker to execute arbitrary...
[DRAGONFORCE] – Ransomware Victim: Mobigator Technology Group
Ransomware Group: DRAGONFORCE VICTIM NAME: Mobigator Technology Group NOTE: No files or stolen information are by RedPacket Security. Any legal...
HackerOne Bug Bounty Disclosure: cve-redos-vulnerability-in-rexml-manun
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:manunLink to Submitters Profile:https://hackerone.com/manun Report Title:CVE-2024-49761: ReDoS vulnerability in REXMLReport...
HackerOne Bug Bounty Disclosure: cve-potential-denial-of-service-in-django-utils-html-urlize-mprogrammer
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:mprogrammerLink to Submitters Profile:https://hackerone.com/mprogrammer Report Title:CVE-2024-41990: Potential denial-of-service in djangoutilshtmlurlize()Report...
[EMBARGO] – Ransomware Victim: backyarddiscovery[.]com
Ransomware Group: EMBARGO VICTIM NAME: backyarddiscoverycom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: www[.]sansirostadium[.]com
Ransomware Group: APT73 VICTIM NAME: wwwsansirostadiumcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SARCOMA] – Ransomware Victim: Chema Per
Ransomware Group: SARCOMA VICTIM NAME: Chema Per NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[SARCOMA] – Ransomware Victim: EP:Schuller
Ransomware Group: SARCOMA VICTIM NAME: EP:Schuller NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-53865
Vulnerability Summary: CVE-2024-53865 zhmcclient is a pure Python client library for the IBM Z HMC Web Services API. In affected...
CVE Alert: CVE-2024-36624
Vulnerability Summary: CVE-2024-36624 Zulip 8.3 is vulnerable to Cross Site Scripting (XSS) via the construct_copy_div function in copy_and_paste.js. Affected Endpoints:...
CVE Alert: CVE-2024-53979
Vulnerability Summary: CVE-2024-53979 ibm.ibm_zhmc is an Ansible collection for the IBM Z HMC. The Ansible collection "ibm.ibm_zhmc" writes password-like properties...
CVE Alert: CVE-2024-47193
Vulnerability Summary: CVE-2024-47193 WithSecure Elements Agent for Mac before 24.3, MDR before 24.3, and Elements Client Security for Mac before...
CVE Alert: CVE-2024-49360
Vulnerability Summary: CVE-2024-49360 Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. An authenticated user...
CVE Alert: CVE-2024-11995
Vulnerability Summary: CVE-2024-11995 A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability...
CVE Alert: CVE-2024-54159
Vulnerability Summary: CVE-2024-54159 stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp/rtthrottle...
