CVE

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32423

May 24, 2023

NAME__________Apple Safari, tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple Safari 16.4 Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk...

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32403

May 24, 2023

NAME__________Apple tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple iOS 15.7.5 Apple iPadOS 15.7.5 Apple iOS 16.4 Apple iPadOS 16.4 Apple...

Facebook Hermes information disclosure | CVE-2023-24833

May 24, 2023

NAME__________Facebook Hermes information disclosurePlatforms Affected:Facebook HermesRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Facebook Hermes could allow a remote attacker to obtain sensitive information, caused...

Facebook Hermes denial of service | CVE-2023-24832

May 24, 2023

NAME__________Facebook Hermes denial of servicePlatforms Affected:Facebook HermesRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Facebook Hermes is vulnerable to a denial of service, caused...

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32389

May 24, 2023

NAME__________Apple tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple tvOS,...

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32399

May 24, 2023

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32408

May 24, 2023

NAME__________Apple tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple iOS 15.7.5 Apple iPadOS 15.7.5 Apple iOS 16.4 Apple iPadOS 16.4 Apple...

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32368

May 24, 2023

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32394

May 24, 2023

NAME__________Apple tvOS, iOS and iPadOS information disclosurePlatforms Affected:Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk Level:2.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple tvOS,...

Apple tvOS, iOS and iPadOS security bypass | CVE-2023-28191

May 24, 2023

NAME__________Apple tvOS, iOS and iPadOS security bypassPlatforms Affected:Apple iOS 16.4 Apple iPadOS 16.4 Apple tvOS 16.4Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple tvOS,...

Groundhogg plugin for WordPress cross-site request forgery | CVE-2023-2717

May 24, 2023

NAME__________Groundhogg plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Groundhogg plugin for WordPress 2.7.9.3 WordPress Groundhogg plugin for WordPress 2.7.9.2Risk Level:5.4Exploitability:UnprovenConsequences:Gain...

Groundhogg plugin for WordPress security bypass | CVE-2023-2714

May 24, 2023

NAME__________Groundhogg plugin for WordPress security bypassPlatforms Affected:WordPress Groundhogg plugin for WordPress 2.7.9.3 WordPress Groundhogg plugin for WordPress 2.7.9.2Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security...

Groundhogg plugin for WordPress cross-site scripting | CVE-2023-2735

May 24, 2023

NAME__________Groundhogg plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Groundhogg plugin for WordPress 2.7.9.3 WordPress Groundhogg plugin for WordPress 2.7.9.2Risk Level:4.9Exploitability:UnprovenConsequences:Cross-Site Scripting...

D-Link DIR-300 file include | CVE-2023-31814

May 24, 2023

NAME__________D-Link DIR-300 file includePlatforms Affected:D-Link DIR-300 REVA1.06 D-Link DIR-300 REVB2.06Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-300 could allow a remote attacker to...

Tornado open redirect | CVE-2023-28370

May 24, 2023

NAME__________Tornado open redirectPlatforms Affected:Tornado Tornado 6.3.1Risk Level:3.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Tornado could allow a remote attacker to conduct phishing attacks, caused by...

Filmora Service Unquoted Service Path privilege escalation | CVE-2023-31747

May 24, 2023

NAME__________Filmora Service Unquoted Service Path privilege escalationPlatforms Affected:Filmora Filmora 12Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Filmora could allow a local authenticated attacker to...

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32392

May 24, 2023

Groundhogg plugin for WordPress security bypass | CVE-2023-2715

May 24, 2023

Groundhogg plugin for WordPress security bypass | CVE-2023-2716

May 24, 2023

NAME__________Groundhogg plugin for WordPress security bypassPlatforms Affected:WordPress Groundhogg plugin for WordPress 2.7.9.3 WordPress Groundhogg plugin for WordPress 2.7.9.2Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security...

WSO2 API Manager cross-site scripting | CVE-2023-31664

May 24, 2023

NAME__________WSO2 API Manager cross-site scriptingPlatforms Affected:WSO2 API Manager 3.1.0 WSO2 API Manager 3.2.0 WSO2 API Manager 4.0.0 WSO2 API Manager...

MyBB cross-site scripting | CVE-2023-28467

May 24, 2023

NAME__________MyBB cross-site scriptingPlatforms Affected:MyBB MyBB 1.8.30 MyBB MyBB 1.8.29 MyBB MyBB 1.8.31 MyBB MyBB 1.8.32 MyBB MyBB 1.8.33Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting...

Groundhogg plugin for WordPress cross-site request forgery | CVE-2023-2736

May 24, 2023

Horner Automation Cscape code execution | CVE-2023-32539

May 24, 2023

NAME__________Horner Automation Cscape code executionPlatforms Affected:Horner Automation Cscape 9.90 SP8 Horner Automation Cscape EnvisionRV 4.70Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Horner Automation Cscape...

Horner Automation Cscape code exec | CVE-2023-32289

May 24, 2023

NAME__________Horner Automation Cscape code execPlatforms Affected:Horner Automation Cscape 9.90 SP8 Horner Automation Cscape EnvisionRV 4.70Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Horner Automation Cscape...

CVE

Apple Safari, tvOS, iOS and iPadOS information disclosure | CVE-2023-32423

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32403

Facebook Hermes information disclosure | CVE-2023-24833

Facebook Hermes denial of service | CVE-2023-24832

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32389

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32399

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32408

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32368

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32394

Apple tvOS, iOS and iPadOS security bypass | CVE-2023-28191

Groundhogg plugin for WordPress cross-site request forgery | CVE-2023-2717

Groundhogg plugin for WordPress security bypass | CVE-2023-2714

Groundhogg plugin for WordPress cross-site scripting | CVE-2023-2735

D-Link DIR-300 file include | CVE-2023-31814

Tornado open redirect | CVE-2023-28370

Filmora Service Unquoted Service Path privilege escalation | CVE-2023-31747

Apple tvOS, iOS and iPadOS information disclosure | CVE-2023-32392

Groundhogg plugin for WordPress security bypass | CVE-2023-2715

Groundhogg plugin for WordPress security bypass | CVE-2023-2716

WSO2 API Manager cross-site scripting | CVE-2023-31664

MyBB cross-site scripting | CVE-2023-28467

Groundhogg plugin for WordPress cross-site request forgery | CVE-2023-2736

Horner Automation Cscape code execution | CVE-2023-32539

Horner Automation Cscape code exec | CVE-2023-32289

Google Chrome Multiple Vulnerabilities

Cobalt Strike Beacon Detected – 124[.]221[.]116[.]169:80

Cobalt Strike Beacon Detected – 196[.]251[.]87[.]191:4433

Cobalt Strike Beacon Detected – 179[.]43[.]186[.]243:80

Cobalt Strike Beacon Detected – 118[.]25[.]91[.]151:80

You may have missed