Gain Access

Cisco Identity Services Engine server-side request forgery | CVE-2024-20332

April 4, 2024

NAME__________Cisco Identity Services Engine server-side request forgeryPlatforms Affected:Cisco Identity Services EngineRisk Level:5.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco Identity Services Engine (ISE) is vulnerable...

Cisco Nexus Dashboard, Cisco Nexus Dashboard Fabric Controller, Cisco Nexus Dashboard Insights, and Cisco Nexus Dashboard Orchestrator cross-site request forgery | CVE-2024-20281

April 4, 2024

NAME__________Cisco Nexus Dashboard, Cisco Nexus Dashboard Fabric Controller, Cisco Nexus Dashboard Insights, and Cisco Nexus Dashboard Orchestrator cross-site request forgeryPlatforms...

X.Org X server code execution | CVE-2024-31083

April 4, 2024

NAME__________X.Org X server code executionPlatforms Affected:X.Org X Server 21.1 X.Org Xwayland 23.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________X.Org X server could allow a...

Node.js request smuggling | CVE-2024-27982

April 4, 2024

NAME__________Node.js request smugglingPlatforms Affected:Node.js Node.js 18.0 Node.js Node.js 20.0 Node.js Node.js 21.0Risk Level:5.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Node.js is vulnerable to HTTP request...

X.Org X server buffer overflow | CVE-2024-31081

April 4, 2024

NAME__________X.Org X server buffer overflowPlatforms Affected:X.Org X Server 21.1 X.Org Xwayland 23.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________X.Org X server is vulnerable to...

Cisco Identity Services Engine cross-site request forgery | CVE-2024-20368

April 4, 2024

NAME__________Cisco Identity Services Engine cross-site request forgeryPlatforms Affected:Cisco Identity Services EngineRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco Identity Services Engine is vulnerable to...

X.Org X server buffer overflow | CVE-2024-31082

April 4, 2024

Cisco Emergency Responder cross-site request forgery | CVE-2024-20347

April 4, 2024

NAME__________Cisco Emergency Responder cross-site request forgeryPlatforms Affected:Cisco Emergency ResponderRisk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco Emergency Responder is vulnerable to cross-site request forgery,...

X.Org X server buffer overflow | CVE-2024-31080

April 4, 2024

PHPGurukul Emergency Ambulance Hiring Portal cross-site request forgery | CVE-2024-3089

April 3, 2024

NAME__________PHPGurukul Emergency Ambulance Hiring Portal cross-site request forgeryPlatforms Affected:PHPGurukul Emergency Ambulance Hiring Portal 1.0Risk Level:4.3Exploitability:HighConsequences:Gain Access DESCRIPTION__________PHPGurukul Emergency Ambulance Hiring...

DJI drone code execution | CVE-2023-51454

April 3, 2024

NAME__________DJI drone code executionPlatforms Affected:DJI Mavic 3 01.01.0000 Pro DJI Mavic 3 01.01.0000 DJI Mavic 3 01.01.0000 Classic DJI Mavic...

DJI drone code execution | CVE-2023-51455

April 3, 2024

NAME__________DJI drone code executionPlatforms Affected:DJI Mavic 3 01.01.0000 Pro DJI Mavic 3 01.01.0000 DJI Mavic 3 01.01.0000 Classic DJI Mavic...

DJI drone code execution | CVE-2023-51456

April 3, 2024

NAME__________DJI drone code executionPlatforms Affected:DJI Mavic 3 01.01.0000 Pro DJI Mavic 3 01.01.0000 DJI Mavic 3 01.01.0000 Classic DJI Mavic...

IOSiX IO-1020 default account | CVE-2024-30210

April 3, 2024

NAME__________IOSiX IO-1020 default accountPlatforms Affected:IOSiX IO-1020 359 IOSiX IO-1020 358Risk Level:7.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IOSiX IO-1020 contains a default Wi-Fi password. A...

Samsung Mobile devices code execution | CVE-2024-20843

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

IOSiX IO-1020 default account | CVE-2024-31069

April 3, 2024

Samsung Mobile devices code execution | CVE-2024-20842

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20848

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20849

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices security bypass | CVE-2024-20851

April 3, 2024

NAME__________Samsung Mobile devices security bypassPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices security bypass | CVE-2024-20847

April 3, 2024

NAME__________Samsung Mobile devices security bypassPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20846

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Hikvision NVR Devices command execution | CVE-2024-29949

April 3, 2024

NAME__________Hikvision NVR Devices command executionPlatforms Affected:Hikvision DS-7604NXI-K1/4P 4.76.005 build231012Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Hikvision NVR Devices could allow a remote authenticated attacker...

Cockpit command execution | CVE-2024-2947

April 2, 2024

NAME__________Cockpit command executionPlatforms Affected:Cockpit Cockpit 270Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cockpit could allow a local authenticated attacker to execute arbitrary commands on...

Gain Access

Cisco Identity Services Engine server-side request forgery | CVE-2024-20332

Cisco Nexus Dashboard, Cisco Nexus Dashboard Fabric Controller, Cisco Nexus Dashboard Insights, and Cisco Nexus Dashboard Orchestrator cross-site request forgery | CVE-2024-20281

X.Org X server code execution | CVE-2024-31083

Node.js request smuggling | CVE-2024-27982

X.Org X server buffer overflow | CVE-2024-31081

Cisco Identity Services Engine cross-site request forgery | CVE-2024-20368

X.Org X server buffer overflow | CVE-2024-31082

Cisco Emergency Responder cross-site request forgery | CVE-2024-20347

X.Org X server buffer overflow | CVE-2024-31080

PHPGurukul Emergency Ambulance Hiring Portal cross-site request forgery | CVE-2024-3089

DJI drone code execution | CVE-2023-51454

DJI drone code execution | CVE-2023-51455

DJI drone code execution | CVE-2023-51456

IOSiX IO-1020 default account | CVE-2024-30210

Samsung Mobile devices code execution | CVE-2024-20843

IOSiX IO-1020 default account | CVE-2024-31069

Samsung Mobile devices code execution | CVE-2024-20842

Samsung Mobile devices code execution | CVE-2024-20848

Samsung Mobile devices code execution | CVE-2024-20849

Samsung Mobile devices security bypass | CVE-2024-20851

Samsung Mobile devices security bypass | CVE-2024-20847

Samsung Mobile devices code execution | CVE-2024-20846

Hikvision NVR Devices command execution | CVE-2024-29949

Cockpit command execution | CVE-2024-2947

[APT73] – Ransomware Victim: www[.]fpj[.]com[.]py

[HUNTERS] – Ransomware Victim: Horsa

CVE Alert: CVE-2024-52498

CVE Alert: CVE-2024-52499

CVE Alert: CVE-2024-52501

You may have missed