Vulnerabilities

CVE-2021-22857

February 18, 2021

The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily.

Summary:

The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily.

Reference Links(if available):

https://www.twcert.org.tw/tw/cp-132-4395-c01f7-1.html

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

[KILLSEC] – Ransomware Victim: Giggle Finance

November 13, 2024

News

US-CERT Vulnerability Summary for the Week of November 4, 2024

November 12, 2024

[RAWORLD] – Ransomware Victim: Orange County Pathology Medical Group

November 12, 2024

[RAWORLD] – Ransomware Victim: SK Gas

November 12, 2024

CISA

CISA: Ivanti Releases Security Updates for Multiple Products

November 12, 2024

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

[KILLSEC] – Ransomware Victim: Giggle Finance

US-CERT Vulnerability Summary for the Week of November 4, 2024

[RAWORLD] – Ransomware Victim: Orange County Pathology Medical Group

[RAWORLD] – Ransomware Victim: SK Gas

CISA: Ivanti Releases Security Updates for Multiple Products