Siemens SICAM GridEdge Software security bypass | CVE-2022-30228
NAME Siemens SICAM GridEdge Software security bypass Platforms Affected:Siemens SICAM GridEdge Essential ARM Siemens SICAM GridEdge Essential Intel Siemens SICAM...
CVE
Siemens EN100 Ethernet Module denial of service | CVE-2022-30937
NAME Siemens EN100 Ethernet Module denial of service Platforms Affected:Siemens EN100 Ethernet module IEC 61850 variant 4.20 Siemens EN100 Ethernet...
Siemens SICAM GridEdge Software information disclosure | CVE-2022-30229
NAME Siemens SICAM GridEdge Software information disclosure Platforms Affected:Siemens SICAM GridEdge Essential ARM Siemens SICAM GridEdge Essential Intel Siemens SICAM...
Daily Vulnerability Trends: Fri Jun 17 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-24436Observable behavioral in power management throttling for some Intel(R) Processors may allow...
Siemens Mendix SAML Module XML external entity injection | CVE-2022-32285
NAME Siemens Mendix SAML Module XML external entity injection Platforms Affected:Siemens Mendix SAML Module 2.2.1 Siemens Mendix SAML Module 1.16.5...
Cisco Secure Email and Web Manager security bypass | CVE-2022-20798
NAME Cisco Secure Email and Web Manager security bypass Platforms Affected:Cisco Email Security ApplianceRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Cisco Secure Email...
Siemens SINEMA Remote Connect Server file upload | CVE-2022-32262
NAME Siemens SINEMA Remote Connect Server file upload Platforms Affected:Siemens SINEMA Remote Connect Server 3.0 Siemens SINEMA Remote Connect Server...
Apache Hadoop privilege escalation | CVE-2021-33036
NAME Apache Hadoop privilege escalation Platforms Affected:Apache Hadoop 3.0.0-alpha Apache Hadoop 2.2.0 Apache Hadoop 3.2.0 Apache Hadoop 2.10.1 Apache Hadoop...
Apache NiFi and NiFi Registry command execution | CVE-2022-33140
NAME Apache NiFi and NiFi Registry command execution Platforms Affected:Apache NiFi 1.10.0 Apache NiFi Registry 0.6.0 Apache NiFi Registry 1.16.2...
Old Age Home Management System SQL injection |
NAME Old Age Home Management System SQL injection Platforms Affected:PHPGurukul Old Age Home Management System 1.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Old...
Siemens SINEMA Remote Connect Server privilege escalation | CVE-2022-32251
NAME Siemens SINEMA Remote Connect Server privilege escalation Platforms Affected:Siemens SINEMA Remote Connect Server 3.0 Siemens SINEMA Remote Connect Server...
Algo Control Panel code execution |
NAME Algo Control Panel code execution Platforms Affected:Algo 8028Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Algo Control Panel could allow a...
Cisco Small Business Routers command execution | CVE-2022-20825
NAME Cisco Small Business Routers command execution Platforms Affected:Cisco Small Business RV Series RV110W Wireless-N VPN Firewall Cisco Small Business...
[updated]Unpatched Atlassian Confluence vulnerability is actively exploited
Researchers found a vulnerability in Atlassian Confluence by conducting an incident response investigation. Atlassian rates the severity level of this...
FAQ: Mitigating Microsoft Office’s ‘Follina’ zero-day
On Monday May 30, 2022, Microsoft issued CVE-2022-30190 for a zero-day remote code vulnerability, ‘Follina’, already being exploited in the wild...
Update now! Patch against vulnerabilities in Meeting Owl Pro and Whiteboard Owl devices
After a decent amount of pressure, Owl Labs has finally released updates for vulnerabilities in Meeting Owl, and Whiteboard Owl...
Serious vulnerabilities found in ITarian software, patches available for SaaS products
Dutch research group DIVD has identified multiple vulnerabilities in ITarian products. In cooperation with DIVD, ITarian has made patches available...
Update Chrome now: Four high risk vulnerabilities found
Users of Chrome have been advised to apply updates as soon as possible related to seven security vulnerabilities. CISA has...
Don’t panic! “Unpatchable” Mac vulnerability discovered
Researchers at MIT’s Computer Science & Artificial Intelligence Lab (CSAIL) found an attack surface in a hardware-level security mechanism utilized...
Update now! Microsoft patches Follina, and many other security updates
The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was...
“Multiple adversaries” exploiting Confluence vulnerability, warns Microsoft
Microsoft has warned that “multiple adversaries and nation-state actors” are making use of the recent Atlassian Confluence RCE vulnerability. A...
Daily Vulnerability Trends: Thu Jun 16 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-29855Mitel 6800 and 6900 Series SIP phone devices through 2022-04-27 have "undocumented...
HUAWEI EMUI/Magic UI privilege escalation | CVE-2022-31762
NAME HUAWEI EMUI/Magic UI privilege escalation Platforms Affected:Huawei EMUI 10.1.1 Huawei EMUI 10.1.0 Huawei Magic UI 3.1.1 Huawei Magic UI...
Microsoft Windows Hyper-V code execution | CVE-2022-30163
NAME Microsoft Windows Hyper-V code execution Platforms Affected:Microsoft Windows 7 SP1 x64 Microsoft Windows Server 2012 Microsoft Windows 8.1 x64...
