Cobalt Stike Beacon Detected – 150[.]158[.]45[.]62:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]170[.]10:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
7-Zip gets Mark of the Web feature, increases protection for users
One of the most popular zip programs around, 7-Zip, now offers support for “Mark of the Web” (MOTW), which gives...
MEGA claims it can’t decrypt your files. But someone’s managed to…
MEGA, the cloud storage provider and file hosting service, is very proud of its end-to-end encryption. It says it couldn’t...
Jenkins ontrack Jenkins Plugin cross-site scripting | CVE-2022-34192
NAME Jenkins ontrack Jenkins Plugin cross-site scripting Platforms Affected:Jenkins ontrack Jenkins Plugin 4.0.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins ontrack Jenkins Plugin...
Jenkins Nested View Plugin cross-site scripting | CVE-2022-34182
NAME Jenkins Nested View Plugin cross-site scripting Platforms Affected:Jenkins Nested View Plugin 1.25Risk Level:8.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Nested View Plugin...
Siemens SIMATIC WinCC security bypass | CVE-2022-33139
NAME Siemens SIMATIC WinCC security bypass Platforms Affected:Siemens SIMATIC WinCC OA 3.16 Siemens SIMATIC WinCC OA 3.17 Siemens SIMATIC WinCC...
iSpyConnect iSpy security bypass | CVE-2022-29775
NAME iSpyConnect iSpy security bypass Platforms Affected:iSpyconnect iSpy 7.2.2.0Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION iSpyConnect iSpy could allow a remote attacker to...
Jenkins LTS and weekly cross-site scripting | CVE-2022-34170
NAME Jenkins LTS and weekly cross-site scripting Platforms Affected:Jenkins weekly 2.355 Jenkins LTS 2.332.3Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins LTS and...
Jenkins REST List Parameter Plugin cross-site scripting | CVE-2022-34196
NAME Jenkins REST List Parameter Plugin cross-site scripting Platforms Affected:Jenkins REST List Parameter Plugin 1.5.2Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins REST...
Jenkins Dynamic Extended Choice Parameter Plugin cross-site scripting | CVE-2022-34186
NAME Jenkins Dynamic Extended Choice Parameter Plugin cross-site scripting Platforms Affected:Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION...
Jenkins Sauce OnDemand Plugin cross-site scripting | CVE-2022-34197
NAME Jenkins Sauce OnDemand Plugin cross-site scripting Platforms Affected:Jenkins Sauce OnDemand Plugin 1.204Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Sauce OnDemand Plugin...
Jenkins Readonly Parameter Plugin cross-site scripting | CVE-2022-34194
NAME Jenkins Readonly Parameter Plugin cross-site scripting Platforms Affected:Jenkins Readonly Parameter Plugin 1.0.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Readonly Parameter Plugin...
Jenkins weekly cross-site scripting | CVE-2022-34172
NAME Jenkins weekly cross-site scripting Platforms Affected:Jenkins weekly 2.355Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins weekly is vulnerable to cross-site scripting, caused...
Jenkins Repository Connector Plugin cross-site scripting | CVE-2022-34195
NAME Jenkins Repository Connector Plugin cross-site scripting Platforms Affected:Jenkins Repository Connector Plugin 2.2.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Repository Connector Plugin...
Jenkins Stash Branch Parameter Plugin cross-site scripting | CVE-2022-34198
NAME Jenkins Stash Branch Parameter Plugin cross-site scripting Platforms Affected:Jenkins Stash Branch Parameter Plugin 0.3.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Stash...
Jenkins Filesystem List Parameter Plugin cross-site scripting | CVE-2022-34187
NAME Jenkins Filesystem List Parameter Plugin cross-site scripting Platforms Affected:Jenkins Filesystem List Parameter Plugin 0.0.7Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Filesystem...
Jenkins Hidden Parameter Plugin cross-site scripting | CVE-2022-34188
NAME Jenkins Hidden Parameter Plugin cross-site scripting Platforms Affected:Jenkins Hidden Parameter Plugin 0.0.4Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Hidden Parameter Plugin...
Jenkins Maven Metadata Plugin for Jenkins CI server Plugin cross-site scripting | CVE-2022-34190
NAME Jenkins Maven Metadata Plugin for Jenkins CI server Plugin cross-site scripting Platforms Affected:Jenkins Maven Metadata Plugin for Jenkins CI...
Phoenix Contact ProConOS/ProConOS eCLR privilege escalation | CVE-2022-31800
NAME Phoenix Contact ProConOS/ProConOS eCLR privilege escalation Platforms Affected:Phoenix Contact ProConOs Phoenix Contact MultiProg Phoenix Contact ProConOS eCLRRisk Level:9.8Exploitability:UnprovenConsequences:Gain Privileges...
Jenkins CRX Content Package Deployer Plugin cross-site scripting | CVE-2022-34184
NAME Jenkins CRX Content Package Deployer Plugin cross-site scripting Platforms Affected:Jenkins CRX Content Package Deployer Plugin 1.9Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION...
Phoenix Contact ProConOS/ProConOS eCLR privilege escalation | CVE-2022-31801
NAME Phoenix Contact ProConOS/ProConOS eCLR privilege escalation Platforms Affected:Phoenix Contact ProConOs Phoenix Contact MultiProg Phoenix Contact ProConOS eCLRRisk Level:9.8Exploitability:UnprovenConsequences:Gain Privileges...
Jenkins Agent Server Parameter Plugin cross-site scripting | CVE-2022-34183
NAME Jenkins Agent Server Parameter Plugin cross-site scripting Platforms Affected:Jenkins Agent Server Parameter Plugin 1.1Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Agent...
SMA Technologies OpCon UNIX agent security bypass | US-CERT VU#142546
NAME SMA Technologies OpCon UNIX agent security bypass Platforms Affected:SMA Technologies OpCon UNIX agentRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SMA Technologies OpCon...
