Multiple Aruba switches code execution | CVE-2022-23677
NAME Multiple Aruba switches code execution Platforms Affected:Aruba 5400R Series Aruba 3810 Series Aruba 2920 Series Aruba 2930F Series Aruba...
Ruijie RG-EW Series Routers code execution | CVE-2021-43164
NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...
Cisco Enterprise NFV Infrastructure Software command execution | CVE-2022-20779
NAME Cisco Enterprise NFV Infrastructure Software command execution Platforms Affected:Cisco Enterprise NFV Infrastructure Software (NFVIS)Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Cisco Enterprise...
Ruijie RG-EW Series Routers code execution | CVE-2021-43163
NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...
F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting | CVE-2022-28716
NAME F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting Platforms Affected:F5 BIG-IP (AFM) 15.1.0 F5 BIG-IP (PEM) 15.1.0 F5 BIG-IP (PEM)...
Ruijie RG-EW Series Routers code execution | CVE-2021-43160
NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...
F5 BIG-IP cross-site scripting | CVE-2022-28707
NAME F5 BIG-IP cross-site scripting Platforms Affected:F5 BIG-IP 15.1.0 F5 BIG-IP 14.1.0 F5 BIG-IP 14.1.4 F5 BIG-IP 16.1.0 F5 BIG-IP...
Ruijie RG-EW Series Routers code execution | CVE-2021-43161
NAME Ruijie RG-EW Series Routers code execution Platforms Affected:Ruijie RG-EW EW_3.0(1)B11P55Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Ruijie RG-EW Series Routers could allow...
Cisco Enterprise NFV Infrastructure Software security bypass | CVE-2022-20777
NAME Cisco Enterprise NFV Infrastructure Software security bypass Platforms Affected:Cisco Enterprise NFV Infrastructure Software (NFVIS)Risk Level:9.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Cisco Enterprise...
MediaTek Android privilege escalation | CVE-2022-20111
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
MediaTek Android privilege escalation | CVE-2022-20109
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
F5 BIG-IP Guided Configuration and APM cross-site scripting | CVE-2022-27230
NAME F5 BIG-IP Guided Configuration and APM cross-site scripting Platforms Affected:F5 BIG-IP (APM) 14.1.0 F5 BIG-IP (APM) 15.1.0 F5 BIG-IP...
F5 BIG-IP security bypass | CVE-2022-27806
NAME F5 BIG-IP security bypass Platforms Affected:F5 BIG-IP (Advanced WAF) 14.1.0 F5 BIG-IP (Advanced WAF) 15.1.0 F5 BIG-IP (Advanced WAF)...
MediaTek Android privilege escalation | CVE-2022-21743
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
F5 BIG-IP command execution | CVE-2022-1388
NAME F5 BIG-IP command execution Platforms Affected:F5 Big-IP 4.2 F5 BIG-IP 12.1.0 F5 BIG-IP 13.1.0 F5 BIG-IP 14.1.0 F5 BIG-IP...
MediaTek Android privilege escalation | CVE-2022-20110
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
Multiple Avaya switches buffer overflow | CVE-2022-29861
NAME Multiple Avaya switches buffer overflow Platforms Affected:Avaya ERS3500 Series Avaya ERS3600 Series Avaya ERS4900 Series Avaya ERS5900 SeriesRisk Level:9.8Exploitability:UnprovenConsequences:Gain...
F5 BIG-IP (Advanced WAF, APM, ASM) and Guided Configuration (GC) security bypass | CVE-2022-25946
NAME F5 BIG-IP (Advanced WAF, APM, ASM) and Guided Configuration (GC) security bypass Platforms Affected:F5 BIG-IP (APM) 14.1.0 F5 BIG-IP...
Cisco ClamAV denial of service | CVE-2022-20770
NAME Cisco ClamAV denial of service Platforms Affected:Cisco ClamAV 0.103.5 Cisco ClamAV 0.104.2 Cisco Secure Endpoint for Linux 1.17 Cisco...
A new secret stash for “fileless” malware
In February 2022 we observed the technique of putting the shellcode into Windows event logs for the first time “in...
LockBit 2.0 Ransomware Victim: rogz[.]com
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 2.0 Ransomware Victim: aref[.]government[.]bg
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 2.0 Ransomware Victim: nizing[.]com[.]tw
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
BugCrowd Bug Bounty Disclosure: P3 – XSS reflected – https://www.indeed.com/hire/employer-confirmation [co, hl] – By CGuillaume
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
