US-CERT Vulnerability Summary for the Week of December 23, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...
Month: December 2024
CVE Alert: CVE-2024-10044
Vulnerability Summary: CVE-2024-10044 A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API...
CVE Alert: CVE-2024-50702
Vulnerability Summary: CVE-2024-50702 TeamPass before 3.1.3.1 does not properly check whether a mail_me (aka action_mail) operation is on behalf of...
CVE Alert: CVE-2024-54181
Vulnerability Summary: CVE-2024-54181 IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to the swagger...
CVE Alert: CVE-2024-50701
Vulnerability Summary: CVE-2024-50701 TeamPass before 3.1.3.1, when retrieving information about access rights for a folder, does not properly check whether...
CVE Alert: CVE-2024-50703
Vulnerability Summary: CVE-2024-50703 TeamPass before 3.1.3.1 does not properly prevent a user from acting with the privileges of a different...
CVE Alert: CVE-2024-12834
Vulnerability Summary: CVE-2024-12834 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12754
Vulnerability Summary: CVE-2024-12754 AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected...
CVE Alert: CVE-2024-12835
Vulnerability Summary: CVE-2024-12835 Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12828
Vulnerability Summary: CVE-2024-12828 Webmin CGI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code...
CVE Alert: CVE-2024-12836
Vulnerability Summary: CVE-2024-12836 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
[FUNKSEC] – Ransomware Victim: RaaS Open
Ransomware Group: FUNKSEC VICTIM NAME: RaaS Open NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-46542
Vulnerability Summary: CVE-2024-46542 Veritas / Arctera Data Insight before 7.1.1 allows Application Administrators to conduct SQL injection attacks. Affected Endpoints:...
CVE Alert: CVE-2024-56733
Vulnerability Summary: CVE-2024-56733 Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has...
CVE Alert: CVE-2024-56799
Vulnerability Summary: CVE-2024-56799 Simofa is a tool to help automate static website building and deployment. Prior to version 0.2.7, due...
CVE Alert: CVE-2024-52294
Vulnerability Summary: CVE-2024-52294 Khoj is a self-hostable artificial intelligence app. Prior to version 1.29.10, an Insecure Direct Object Reference (IDOR)...
CVE Alert: CVE-2024-56800
Vulnerability Summary: CVE-2024-56800 Firecrawl is a web scraper that allows users to extract the content of a webpage for a...
CVE Alert: CVE-2024-11946
Vulnerability Summary: CVE-2024-11946 iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to...
CVE Alert: CVE-2024-11944
Vulnerability Summary: CVE-2024-11944 iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
CVE Alert: CVE-2024-13043
Vulnerability Summary: CVE-2024-13043 Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges...
CVE Alert: CVE-2024-13045
Vulnerability Summary: CVE-2024-13045 Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-13044
Vulnerability Summary: CVE-2024-13044 Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to...
[DRAGONFORCE] – Ransomware Victim: Cogitis
Ransomware Group: DRAGONFORCE VICTIM NAME: Cogitis NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 154[.]37[.]219[.]91:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
