OSINT

CVE Alert: CVE-2024-53289

December 12, 2024

Vulnerability Summary: CVE-2024-53289 Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with...

CVE Alert: CVE-2024-10511

December 12, 2024

Vulnerability Summary: CVE-2024-10511 CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone...

CVE Alert: CVE-2024-12283

December 12, 2024

Vulnerability Summary: CVE-2024-12283 The WP Pipes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘x1’ parameter in...

CVE Alert: CVE-2024-11737

December 12, 2024

Vulnerability Summary: CVE-2024-11737 CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss...

CVE Alert: CVE-2024-11840

December 12, 2024

Vulnerability Summary: CVE-2024-11840 The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized access of data...

CVE Alert: CVE-2024-12363

December 12, 2024

Vulnerability Summary: CVE-2024-12363 Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows...

CVE Alert: CVE-2024-12294

December 12, 2024

Vulnerability Summary: CVE-2024-12294 The Last Viewed Posts by WPBeginner plugin for WordPress is vulnerable to Sensitive Information Exposure in all...

CVE Alert: CVE-2024-11008

December 12, 2024

Vulnerability Summary: CVE-2024-11008 The Members – Membership & User Role Editor Plugin plugin for WordPress is vulnerable to Sensitive Information...

CVE Alert: CVE-2024-54269

December 12, 2024

Vulnerability Summary: CVE-2024-54269 Missing Authorization vulnerability in Ninja Team Notibar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...

[SARCOMA] – Ransomware Victim: Brasilmad

December 12, 2024

Ransomware Group: SARCOMA VICTIM NAME: Brasilmad NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-11351

December 12, 2024

Vulnerability Summary: CVE-2024-11351 The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-51460

December 12, 2024

Vulnerability Summary: CVE-2024-51460 IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed...

CVE Alert: CVE-2023-23472

December 12, 2024

Vulnerability Summary: CVE-2023-23472 IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an authenticated user to obtain sensitive...

CVE Alert: CVE-2024-12325

December 12, 2024

Vulnerability Summary: CVE-2024-12325 The Waymark plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘content’ parameter in all...

CVE Alert: CVE-2024-28141

December 12, 2024

Vulnerability Summary: CVE-2024-28141 The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users...

CVE Alert: CVE-2024-11598

December 12, 2024

Vulnerability Summary: CVE-2024-11598 Under specific circumstances, insecure permissions in Ivanti Application Control before version 2024.3 HF1, 2024.1 HF2, or 2023.3...

CVE Alert: CVE-2024-11597

December 12, 2024

Vulnerability Summary: CVE-2024-11597 Under specific circumstances, insecure permissions in Ivanti Performance Manager before version 2024.3 HF1, 2024.1 HF1, or 2023.3...

CVE Alert: CVE-2024-10251

December 12, 2024

Vulnerability Summary: CVE-2024-10251 Under specific circumstances, insecure permissions in Ivanti Security Controls before version 2024.4.1 allows a local authenticated attacker...

CVE Alert: CVE-2024-8496

December 12, 2024

Vulnerability Summary: CVE-2024-8496 Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker...

CVE Alert: CVE-2024-9845

December 12, 2024

Vulnerability Summary: CVE-2024-9845 Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to...

CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities

December 12, 2024

CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities Today, the Cybersecurity and Infrastructure...

CISA: Citrix Releases Security Updates for NetScaler and Citrix Session Recording

December 12, 2024

Citrix Releases Security Updates for NetScaler and Citrix Session Recording Citrix released security updates to address multiple vulnerabilities in NetScaler...

CISA: Palo Alto Networks Emphasizes Hardening Guidance

December 12, 2024

Palo Alto Networks Emphasizes Hardening Guidance Updated November 15, 2024 Palo Alto Networks (PAN) has updated their informational bulletin, noting...

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

December 12, 2024

CISA Releases Nineteen Industrial Control Systems Advisories CISA released nineteen Industrial Control Systems (ICS) advisories on November 14, 2024. These...

OSINT

CVE Alert: CVE-2024-53289

CVE Alert: CVE-2024-10511

CVE Alert: CVE-2024-12283

CVE Alert: CVE-2024-11737

CVE Alert: CVE-2024-11840

CVE Alert: CVE-2024-12363

CVE Alert: CVE-2024-12294

CVE Alert: CVE-2024-11008

CVE Alert: CVE-2024-54269

[SARCOMA] – Ransomware Victim: Brasilmad

CVE Alert: CVE-2024-11351

CVE Alert: CVE-2024-51460

CVE Alert: CVE-2023-23472

CVE Alert: CVE-2024-12325

CVE Alert: CVE-2024-28141

CVE Alert: CVE-2024-11598

CVE Alert: CVE-2024-11597

CVE Alert: CVE-2024-10251

CVE Alert: CVE-2024-8496

CVE Alert: CVE-2024-9845

CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities

CISA: Citrix Releases Security Updates for NetScaler and Citrix Session Recording

CISA: Palo Alto Networks Emphasizes Hardening Guidance

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

CVE Alert: CVE-2025-22146

CVE Alert: CVE-2025-0483

CVE Alert: CVE-2025-0486

CVE Alert: CVE-2025-0487

CVE Alert: CVE-2025-0488

You may have missed