CVE

IBM MQ denial of service | CVE-2022-43902

March 2, 2023

NAME__________IBM MQ denial of servicePlatforms Affected:IBM MQ Appliance 9.2.CD IBM MQ Appliance 9.2.LTS IBM MQ Appliance 9.3.LTS IBM MQ Appliance...

Arubanetworks ArubaOS command execution | CVE-2023-22769

March 2, 2023

NAME__________Arubanetworks ArubaOS command executionPlatforms Affected:Aruba Networks ArubaOS 10.3.1.0 Aruba Networks ArubaOS 8.6.0.19 Aruba Networks ArubaOS 8.10.0.4 Aruba Networks SD-WAN 8.7.0.0-2.3.0.8Risk...

EC-CUBE cross-site scripting | CVE-2023-22438

March 2, 2023

NAME__________EC-CUBE cross-site scriptingPlatforms Affected:EC-CUBE EC-CUBE 4.2.0 EC-CUBE EC-CUBE 2.17.2 EC-CUBE EC-CUBE 3.0.18-p5Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________EC-CUBE is vulnerable to cross-site scripting,...

Cisco Unified Intelligence Center server-side request forgery | CVE-2023-20062

March 2, 2023

NAME__________Cisco Unified Intelligence Center server-side request forgeryPlatforms Affected:Cisco Unified Contact Center Enterprise Cisco Unified Contact Center Express Cisco Unified Intelligence...

Aruba Networks ArubaOS directory traversal | CVE-2023-22776

March 2, 2023

NAME__________Aruba Networks ArubaOS directory traversalPlatforms Affected:Aruba Networks ArubaOS 10.3.1.0 Aruba Networks ArubaOS 10.3.0.0 Aruba Networks ArubaOS 8.6.0 Aruba Networks ArubaOS...

Snyk Kubernetes Monitor security bypass | CVE-2023-1065

March 2, 2023

NAME__________Snyk Kubernetes Monitor security bypassPlatforms Affected:Snyk Kubernetes MonitorRisk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Snyk Kubernetes Monitor could allow a remote attacker to bypass...

Group control for forums module for Drupal security bypass |

March 2, 2023

NAME__________Group control for forums module for Drupal security bypassPlatforms Affected:Drupal Group control for forums module for Drupal 2.0.1Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security...

Cisco Finesse Reverse Proxy VPN-less denial of service | CVE-2023-20088

March 2, 2023

NAME__________Cisco Finesse Reverse Proxy VPN-less denial of servicePlatforms Affected:Cisco System Unified Contact Center Enterprise Cisco Unified Contact Center Express Cisco...

STAGIL Navigation plugin for Jira directory traversal | CVE-2023-26256

March 2, 2023

NAME__________STAGIL Navigation plugin for Jira directory traversalPlatforms Affected:Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________STAGIL Navigation plugin for Jira could allow a remote authenticated...

EC-CUBE cross-site scripting | CVE-2023-22838

March 2, 2023

NAME__________EC-CUBE cross-site scriptingPlatforms Affected:EC-CUBE EC-CUBE 4.2.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________EC-CUBE is vulnerable to cross-site scripting, caused by improper validation of user-supplied...

Dell PowerScale OneFS denial of service | CVE-2023-25540

March 2, 2023

NAME__________Dell PowerScale OneFS denial of servicePlatforms Affected:Risk Level:6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Dell PowerScale OneFS is vulnerable to a denial of service,...

Linux Kernel denial of service | CVE-2023-1075

March 2, 2023

NAME__________Linux Kernel denial of servicePlatforms Affected:Linux KernelRisk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service, caused...

Cisco Unified Intelligence Center information disclosure | CVE-2023-20061

March 2, 2023

NAME__________Cisco Unified Intelligence Center information disclosurePlatforms Affected:Cisco Unified Contact Center Enterprise Cisco Unified Contact Center Express Cisco Unified Intelligence Center...

Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site scripting | CVE-2023-20069

March 2, 2023

NAME__________Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site scriptingPlatforms Affected:Cisco Prime Infrastructure Cisco Evolved Programmable Network ManagerRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting...

DataEase cross-site scripting | CVE-2023-25807

March 2, 2023

NAME__________DataEase cross-site scriptingPlatforms Affected:Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________DataEase is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...

CVE

IBM MQ denial of service | CVE-2022-43902

Arubanetworks ArubaOS command execution | CVE-2023-22769

EC-CUBE cross-site scripting | CVE-2023-22438

Cisco Unified Intelligence Center server-side request forgery | CVE-2023-20062

Aruba Networks ArubaOS directory traversal | CVE-2023-22776

Snyk Kubernetes Monitor security bypass | CVE-2023-1065

Group control for forums module for Drupal security bypass |

Cisco Finesse Reverse Proxy VPN-less denial of service | CVE-2023-20088

STAGIL Navigation plugin for Jira directory traversal | CVE-2023-26256

EC-CUBE cross-site scripting | CVE-2023-22838

Dell PowerScale OneFS denial of service | CVE-2023-25540

Linux Kernel denial of service | CVE-2023-1075

Cisco Unified Intelligence Center information disclosure | CVE-2023-20061

Cisco Prime Infrastructure and Evolved Programmable Network Manager cross-site scripting | CVE-2023-20069

DataEase cross-site scripting | CVE-2023-25807

Multiple Hitachi products security bypass | CVE-2020-36652

STAGIL Navigation plugin for Jira directory traversal | CVE-2023-26255

Dell PowerScale nodes denial of service | CVE-2023-23689

Aruba Networks ArubaOS security bypass | CVE-2023-22771

Arubanetworks ArubaOS command execution | CVE-2023-22762

DOS SS1 and Rakuraku PC Cloud default account | CVE-2023-22344

DOS SS1 and Rakuraku PC Cloud information disclosure | CVE-2023-22336

DOS SS1 and Rakuraku PC Cloud information disclosure | CVE-2023-22335

Linux Kernel denial of service | CVE-2023-1079

[AKIRA] – Ransomware Victim: Fickling & Company

[RANSOMHUB] – Ransomware Victim: www[.]hexosys[.]com

[AKIRA] – Ransomware Victim: Callico Distributors, Inc[.]

[AKIRA] – Ransomware Victim: Safe-Strap Company, LLC

[AKIRA] – Ransomware Victim: Pacific Honda Company

You may have missed