CVE

Jenkins MQ Notifier Plugin information disclosure | CVE-2024-28154

March 11, 2024

NAME__________Jenkins MQ Notifier Plugin information disclosurePlatforms Affected:Jenkins MQ Notifier Plugin 1.4.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins MQ Notifier Plugin could allow a...

Cisco AppDynamics Controller directory traversal | CVE-2024-20345

March 11, 2024

NAME__________Cisco AppDynamics Controller directory traversalPlatforms Affected:Cisco AppDynamics ControllerRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco AppDynamics Controller could allow a remote authenticated attacker to...

Jenkins AppSpider Plugin information disclosure | CVE-2024-28155

March 11, 2024

NAME__________Jenkins AppSpider Plugin information disclosurePlatforms Affected:Jenkins AppSpider Plugin 1.0.16Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins AppSpider Plugin could allow a remote authenticated attacker...

Toyoko Inn official App man-in-the-middle | CVE-2024-27440

March 11, 2024

NAME__________Toyoko Inn official App man-in-the-middlePlatforms Affected:Toyoko Inn Toyoko Inn official AppRisk Level:4.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Toyoko Inn official App is vulnerable to...

Cisco Small Business 100, 300, and 500 Series Wireless Access Points buffer overflow | CVE-2024-20336

March 11, 2024

NAME__________Cisco Small Business 100, 300, and 500 Series Wireless Access Points buffer overflowPlatforms Affected:Cisco Small Business 500 Series Wireless Access...

Thinkst Applied Research Canarytokens information disclosure | CVE-2024-28111

March 11, 2024

NAME__________Thinkst Applied Research Canarytokens information disclosurePlatforms Affected:Thinkst CanarytokensRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Thinkst Applied Research Canarytokens could allow a remote attacker to...

Apache InLong information disclosure | CVE-2024-26580

March 11, 2024

NAME__________Apache InLong information disclosurePlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0 Apache...

Jenkins Subversion Partial Release Manager Plugin security bypass | CVE-2024-28159

March 11, 2024

NAME__________Jenkins Subversion Partial Release Manager Plugin security bypassPlatforms Affected:Jenkins Subversion Partial Release Manager Plugin 1.0.1Risk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Jenkins Subversion Partial...

Jenkins Subversion Partial Release Manager Plugin cross-site request forgery | CVE-2024-28158

March 11, 2024

NAME__________Jenkins Subversion Partial Release Manager Plugin cross-site request forgeryPlatforms Affected:Jenkins Subversion Partial Release Manager Plugin 1.0.1Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Subversion...

IBM DS8900F file manipulation | CVE-2023-46169

March 11, 2024

NAME__________IBM DS8900F file manipulationPlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:6.5Exploitability:UnprovenConsequences:File...

FUJIFILM Business Inovation Corp cross-site request forgery | CVE-2024-27974

March 11, 2024

NAME__________FUJIFILM Business Inovation Corp cross-site request forgeryPlatforms Affected:FUJIFILM Business Innovation Corp FUJIFILM Business Innovation CorpRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________FUJIFILM Business Inovation...

Cisco Small Business 100, 300, and 500 Series Wireless Access Points commmand execution | CVE-2024-20335

March 11, 2024

NAME__________Cisco Small Business 100, 300, and 500 Series Wireless Access Points commmand executionPlatforms Affected:Cisco Small Business 500 Series Wireless Access...

Jenkins docker-build-step Plugin security bypass | CVE-2024-2216

March 11, 2024

NAME__________Jenkins docker-build-step Plugin security bypassPlatforms Affected:Jenkins docker-build-step Plugin 2.11Risk Level:6.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins docker-build-step Plugin could allow a remote authenticated attacker...

Cisco Secure Client for Linux with ISE Posture Module privilege escalation | CVE-2024-20338

March 11, 2024

NAME__________Cisco Secure Client for Linux with ISE Posture Module privilege escalationPlatforms Affected:Cisco Secure Client for LinuxRisk Level:7.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Cisco Secure...

IBM DS8900F security bypass | CVE-2023-46172

March 11, 2024

NAME__________IBM DS8900F security bypassPlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:5.6Exploitability:UnprovenConsequences:Bypass...

GitLab Community Edition and Enterprise Edition privilege escalation | CVE-2024-1299

March 11, 2024

NAME__________GitLab Community Edition and Enterprise Edition privilege escalationPlatforms Affected:GitLab Community Edition 16.9.1 GitLab Community Edition 16.8.3 GitLab Community Edition 16.7.6...

IBM DS8900F information disclosure | CVE-2023-46171

March 11, 2024

NAME__________IBM DS8900F information disclosurePlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain...

Netgear RAX30 buffer overflow | CVE-2023-48725

March 11, 2024

NAME__________Netgear RAX30 buffer overflowPlatforms Affected:NETGEAR RAX30 NETGEAR RAX29 NETGEAR RAX28Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Netgear RAX30 is vulnerable to a stack-based buffer...

GitLab Community Edition and Enterprise Edition security bypass | CVE-2024-0199

March 11, 2024

NAME__________GitLab Community Edition and Enterprise Edition security bypassPlatforms Affected:GitLab Community Edition 16.9.1 GitLab Community Edition 16.8.3 GitLab Community Edition 16.7.6...

Apple macOS Sonoma information disclosure | CVE-2024-23249

March 11, 2024

NAME__________Apple macOS Sonoma information disclosurePlatforms Affected:Apple macOS Sonoma 14.3Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Sonoma could allow a local attacker to...

Sceiner TTLock App security bypass | US-CERT VU#949046

March 11, 2024

NAME__________Sceiner TTLock App security bypassPlatforms Affected:Sciener TTLock App 6.4.5Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Sceiner TTLock App could allow a remote attacker to...

Apple iOS and iPadOS security bypass | CVE-2024-23240

March 11, 2024

NAME__________Apple iOS and iPadOS security bypassPlatforms Affected:Apple iPadOS 17.3 Apple iOS 17.3Risk Level:2.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple iOS and iPadOS could allow...

Apple macOS Sonoma, iOS and iPadOS security bypass | CVE-2024-23277

March 11, 2024

NAME__________Apple macOS Sonoma, iOS and iPadOS security bypassPlatforms Affected:Apple iPadOS 17.3 Apple iOS 17.3 Apple macOS Sonoma 14.3Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information...

IBM DS8900F information disclosure | CVE-2023-46170

March 11, 2024

CVE

Jenkins MQ Notifier Plugin information disclosure | CVE-2024-28154

Cisco AppDynamics Controller directory traversal | CVE-2024-20345

Jenkins AppSpider Plugin information disclosure | CVE-2024-28155

Toyoko Inn official App man-in-the-middle | CVE-2024-27440

Cisco Small Business 100, 300, and 500 Series Wireless Access Points buffer overflow | CVE-2024-20336

Thinkst Applied Research Canarytokens information disclosure | CVE-2024-28111

Apache InLong information disclosure | CVE-2024-26580

Jenkins Subversion Partial Release Manager Plugin security bypass | CVE-2024-28159

Jenkins Subversion Partial Release Manager Plugin cross-site request forgery | CVE-2024-28158

IBM DS8900F file manipulation | CVE-2023-46169

FUJIFILM Business Inovation Corp cross-site request forgery | CVE-2024-27974

Cisco Small Business 100, 300, and 500 Series Wireless Access Points commmand execution | CVE-2024-20335

Jenkins docker-build-step Plugin security bypass | CVE-2024-2216

Cisco Secure Client for Linux with ISE Posture Module privilege escalation | CVE-2024-20338

IBM DS8900F security bypass | CVE-2023-46172

GitLab Community Edition and Enterprise Edition privilege escalation | CVE-2024-1299

IBM DS8900F information disclosure | CVE-2023-46171

Netgear RAX30 buffer overflow | CVE-2023-48725

GitLab Community Edition and Enterprise Edition security bypass | CVE-2024-0199

Apple macOS Sonoma information disclosure | CVE-2024-23249

Sceiner TTLock App security bypass | US-CERT VU#949046

Apple iOS and iPadOS security bypass | CVE-2024-23240

Apple macOS Sonoma, iOS and iPadOS security bypass | CVE-2024-23277

IBM DS8900F information disclosure | CVE-2023-46170

[KILLSEC] – Ransomware Victim: Wendy Wu Tours

[HUNTERS] – Ransomware Victim: Tata Technologies

[QILIN] – Ransomware Victim: rockhillwc[.]com

[RANSOMHUB] – Ransomware Victim: goencon[.]com

[QILIN] – Ransomware Victim: peruzzi[.]com

You may have missed