Obtain Information

HPE Superdome Flex and Superdome Flex 280 servers information disclosure | CVE-2022-37939

March 11, 2023

NAME__________HPE Superdome Flex and Superdome Flex 280 servers information disclosurePlatforms Affected:HPE Superdome Flex Servers 3.65.8 HPE Superdome Flex 280 Servers...

Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch information disclosure | CVE-2022-27490

March 11, 2023

NAME__________Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch information disclosurePlatforms Affected:Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal,...

FreshRSS information disclosure | CVE-2023-22481

March 10, 2023

NAME__________FreshRSS information disclosurePlatforms Affected:FreshRSS FreshRSS 1.20.2 FreshRSS FreshRSS 1.9.0Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________FreshRSS could allow a remote authenticated attacker to obtain...

Discourse Yearly Review information disclosure | CVE-2023-25169

March 10, 2023

NAME__________Discourse Yearly Review information disclosurePlatforms Affected:Risk Level:3.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Discourse Yearly Review could allow a remote attacker to obtain sensitive information....

Mastodon information disclosure | CVE-2022-48364

March 10, 2023

NAME__________Mastodon information disclosurePlatforms Affected:Mastodon Mastodon 3.5.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mastodon could allow a remote attacker to obtain sensitive information, caused by...

Devolutions Remote Desktop Manager PowerShell Module information disclosure | CVE-2023-1203

March 10, 2023

NAME__________Devolutions Remote Desktop Manager PowerShell Module information disclosurePlatforms Affected:Devolutions Remote Desktop Manager PowerShell Module 2022.3.1.5Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Devolutions Remote Desktop...

Moby BuildKit information disclosure | CVE-2023-26054

March 10, 2023

NAME__________Moby BuildKit information disclosurePlatforms Affected:Moby BuildKit 0.10.0 Moby BuildKit 0.11.3Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Moby BuildKit could allow a remote attacker to...

Devolutions Server information disclosure | CVE-2023-1201

March 10, 2023

NAME__________Devolutions Server information disclosurePlatforms Affected:Devolutions Devolutions Server 2022.3.12Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Devolutions Server could allow a remote authenticated attacker to obtain...

MediaTek Android information disclosure | CVE-2023-20635

March 10, 2023

NAME__________MediaTek Android information disclosurePlatforms Affected:Risk Level:4.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to obtain sensitive information, caused...

M-Files New Web information disclosure | CVE-2022-3284

March 10, 2023

NAME__________M-Files New Web information disclosurePlatforms Affected:M-Files New WebRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________M-Files New Web could allow a remote authenticated attacker to...

MediaTek Android information disclosure | CVE-2023-20644

March 10, 2023

MediaTek Android information disclosure | CVE-2023-20651

March 10, 2023

MediaTek Android information disclosure | CVE-2023-20648

March 10, 2023

MediaTek Android information disclosure | CVE-2023-20649

March 10, 2023

MediaTek Android information disclosure | CVE-2023-20647

March 10, 2023

Qualcomm Chipsets information disclosure | CVE-2022-22075

March 10, 2023

NAME__________Qualcomm Chipsets information disclosurePlatforms Affected:Risk Level:6.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Chipsets could allow a remote attacker to obtain sensitive information, caused by...

MediaTek Android information disclosure | CVE-2023-20645

March 10, 2023

MediaTek Android information disclosure | CVE-2023-20646

March 10, 2023

Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch information disclosure | CVE-2022-27490

March 10, 2023

Fortinet FortiOS directory traversal | CVE-2022-41328

March 10, 2023

NAME__________Fortinet FortiOS directory traversalPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiOS could allow a local authenticated attacker to traverse directories on the...

Jenkins weekly and LTS information disclosure | CVE-2023-27904

March 10, 2023

NAME__________Jenkins weekly and LTS information disclosurePlatforms Affected:Jenkins weekly 2.393 Jenkins LTS 2.375.3Risk Level:3.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins weekly and LTS could allow...

Ghost information disclosure | CVE-2023-26510

March 7, 2023

NAME__________Ghost information disclosurePlatforms Affected:Ghost Foundation Ghost 5.35.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Ghost could allow a remote authenticated attacker to obtain sensitive information,...

pg_ivm information disclosure | CVE-2023-22847

March 7, 2023

NAME__________pg_ivm information disclosurePlatforms Affected:pg_ivm pg_ivm 1.5.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________pg_ivm could allow a remote authenticated attacker to obtain sensitive information, caused...

Shenzhen Zhibotong Electronics WBT WE1626 Router information disclosure | CVE-2022-45552

March 7, 2023

NAME__________Shenzhen Zhibotong Electronics WBT WE1626 Router information disclosurePlatforms Affected:Shenzhen Zhibotong Electronics WBT WE1626 Router 21.06.18Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Shenzhen Zhibotong Electronics...

Obtain Information

HPE Superdome Flex and Superdome Flex 280 servers information disclosure | CVE-2022-37939

Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch information disclosure | CVE-2022-27490

FreshRSS information disclosure | CVE-2023-22481

Discourse Yearly Review information disclosure | CVE-2023-25169

Mastodon information disclosure | CVE-2022-48364

Devolutions Remote Desktop Manager PowerShell Module information disclosure | CVE-2023-1203

Moby BuildKit information disclosure | CVE-2023-26054

Devolutions Server information disclosure | CVE-2023-1201

MediaTek Android information disclosure | CVE-2023-20635

M-Files New Web information disclosure | CVE-2022-3284

MediaTek Android information disclosure | CVE-2023-20644

MediaTek Android information disclosure | CVE-2023-20651

MediaTek Android information disclosure | CVE-2023-20648

MediaTek Android information disclosure | CVE-2023-20649

MediaTek Android information disclosure | CVE-2023-20647

Qualcomm Chipsets information disclosure | CVE-2022-22075

MediaTek Android information disclosure | CVE-2023-20645

MediaTek Android information disclosure | CVE-2023-20646

Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiPortal, and Fortinet FortiSwitch information disclosure | CVE-2022-27490

Fortinet FortiOS directory traversal | CVE-2022-41328

Jenkins weekly and LTS information disclosure | CVE-2023-27904

Ghost information disclosure | CVE-2023-26510

pg_ivm information disclosure | CVE-2023-22847

Shenzhen Zhibotong Electronics WBT WE1626 Router information disclosure | CVE-2022-45552

[PLAY] – Ransomware Victim: Specialty Bolt And Screw

[PLAY] – Ransomware Victim: Trace3

[PLAY] – Ransomware Victim: Bendheim

CISA: Foreign Threat Actor Conducting Large-Scale Spearphishing Campaign with RDP Attachments

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

You may have missed